inspec-core 5.10.5 → 5.12.2

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d96c590b3ff91ce5db5eaf8ee6ef68721fd17d103f250c8c3106941784f8f336
-  data.tar.gz: 50b56c3506f186b51fcf07df23a59050461132e0c03245bed088961ef0e854fb
+  metadata.gz: b7242aa89bb64084dbeb75587b128af25c4967be0bc06ec8e9d8f386e821d36a
+  data.tar.gz: 876166ebb7e7ae59bb39fe1b9fd4523f45cdb6c22702f08e0074dad4662bf5bf
 SHA512:
-  metadata.gz: 0eeb703b52391323d79b9ff99ce9bdc4b4aac5903fd6e10087b7ae92372b733b7a5779672fb67a3dc7aa6cfb2e3c859ca35ab81a6e49c0331ae623487e6ea241
-  data.tar.gz: 7f076f8c2bef5080a73b6fb8886657137a558bf9c624dd11906c91ef9f555e8c6713af8f62282f9a2fa20e650624fbcd3172fe0e9557f59dd8eb539684192ff1
+  metadata.gz: 155d7f957519b8358c1e8d92373f50b8839cb7f31ca3f32af953a556a2753f768b69b9a78dc7fa2b228ed30e2a26a5b33a393dbe472c501fcc1bda0b54a353f8
+  data.tar.gz: af8ec2a17788ba7add5c58c07c0e842b31e8a7a92f6afd38ca0e794c2d297dde6464e8dd9cf8d8a07374042a2437ec41685226be098004a4396160432d68a14f

data/lib/inspec/resources/docker_container.rb

@@ -43,6 +43,19 @@ module Inspec::Resources
       status.downcase.start_with?("up") if object_info.entries.length == 1
     end
 
+    # has_volume? matcher checks if the volume specified in source path of host is mounted in destination path of docker
+    def has_volume?(destination, source)
+      # volume_info is the hash which contains the low-level information about the container
+      # if Mounts key is not present or is nil; raise exception
+      raise Inspec::Exceptions::ResourceFailed, "Could not find any mounted volumes for your container" unless volume_info.Mounts[0]
+
+      # Iterate through the list of mounted volumes and check if it matches with the given destination and source
+      # is_mounted flag is used to handle to return explict boolean values of true or false
+      is_mounted = false
+      volume_info.Mounts.detect { |mount| is_mounted = mount.Destination == destination && mount.Source == source }
+      is_mounted
+    end
+
     def status
       object_info.status[0] if object_info.entries.length == 1
     end
@@ -87,5 +100,13 @@ module Inspec::Resources
       opts = @opts
       @info = inspec.docker.containers.where { names == opts[:name] || (!id.nil? && !opts[:id].nil? && (id == opts[:id] || id.start_with?(opts[:id]))) }
     end
+
+    # volume_info returns the low-level information obtained on docker inspect [container_name/id]
+    def volume_info
+      return @mount_info if defined?(@mount_info)
+
+      # Check for either docker inspect [container_name] or docker inspect [container_id]
+      @mount_info = inspec.docker.object(@opts[:name] || @opts[:id])
+    end
   end
 end

data/lib/inspec/resources/docker_image.rb

@@ -48,6 +48,25 @@ module Inspec::Resources
       object_info.tags[0] if object_info.entries.size == 1
     end
 
+    # method_missing handles when hash_keys are invoked to check information obtained on docker inspect [image_name]
+    def method_missing(*hash_keys)
+      # User can test the low-level inspect information in three ways:
+      # Way 1: Serverspec style: its(['Config.Cmd']) { should include some_value }
+      #        here, the value for hash_keys recieved is [:[], "Config.Cmd"]
+      # Way 2: InSpec style: its(['Config','Cmd']) { should include some_value }
+      #        here, the value for hash_keys recieved is [:[], "Config", "Cmd"]
+      # Way 3: Mix of both: its(['GraphDriver.Data','MergedDir']) { should include some_value }
+      #        here, the value for hash_keys recieved is [:[], "GraphDriver.Data", "MergedDir"]
+
+      # hash_keys are passed to this method to evaluate the value
+      image_hash_inspection(hash_keys)
+    end
+
+    # inspection property allows to test any of the hash key-value pairs as part of the image_inspect_info
+    def inspection
+      image_inspect_info
+    end
+
     def to_s
       img = @opts[:image] || @opts[:id]
       "Docker Image #{img}"
@@ -80,5 +99,39 @@ module Inspec::Resources
         (repository == opts[:repo] && tag == opts[:tag]) || (!id.nil? && !opts[:id].nil? && (id == opts[:id] || id.start_with?(opts[:id])))
       end
     end
+
+    # image_inspect_info returns the complete inspect hash_values of the image
+    def image_inspect_info
+      return @inspect_info if defined?(@inspect_info)
+
+      @inspect_info = inspec.docker.object(@opts[:image] || (!@opts[:id].nil? && @opts[:id]))
+    end
+
+    # image_hash_inspection formats the input hash_keys and checks if any value exists for such keys in @inspect_info(image_inspect_info)
+    def image_hash_inspection(hash_keys)
+      # The hash_keys recieved are in three formats as mentioned in method_missing
+      # The hash_keys recieved must be in array format [] and the zeroth index must be :[]
+      # Check for the conditions and remove the zeroth element from the hash_keys
+
+      hash_keys.shift if hash_keys.is_a?(Array) && hash_keys[0] == :[]
+
+      # When received hash_keys in Serverspec style or mix of both
+      # The hash_keys are to be splitted at '.' (dot) and flatten it so that it doesn't become array of arrays
+      # After splitting and flattening is done, hash_keys is now an array with individual keys
+      hash_keys = hash_keys.map { |key| key.split(".") }.flatten
+
+      # image_inspect_info returns the complete inspect hash_values of the image
+      # dig() finds the nested value specified by the sequence of the key object by calling dig at each step.
+      # hash_keys is the key object. If one of the key is bad, value will be nil.
+      hash_value = image_inspect_info.dig(*hash_keys)
+
+      # If one of the key is bad, hash_value will be nil, so raise exception which throws it in rescue block
+      # else return hash_value
+      raise Inspec::Exceptions::ResourceFailed if hash_value.nil?
+
+      hash_value
+    rescue
+      raise Inspec::Exceptions::ResourceFailed, "#{hash_keys.join(".")} is not a valid key for your image or has nil value."
+    end
   end
 end

data/lib/inspec/resources/mail_alias.rb

@@ -0,0 +1,46 @@
+require "inspec/resources/command"
+module Inspec::Resources
+  class Mailalias < Inspec.resource(1)
+    # resource internal name.
+    name "mail_alias"
+
+    # Restrict to only run on the below platforms (if none were given,
+    # all OS's and cloud API's supported)
+    supports platform: "unix"
+
+    desc "Use the mail_alias InSpec audit resource to test mail alias present in the aliases file"
+
+    example <<~EXAMPLE
+      describe mail_alias("toor") do
+        it { should be_aliased_to "root" }
+      end
+    EXAMPLE
+
+    def initialize(alias_key)
+      skip_resource "The `mail_alias` resource is not yet available on your OS." unless inspec.os.unix?
+      @alias_key = alias_key
+    end
+
+    # resource_id is used in reporting engines to uniquely identify the individual resource.
+    def resource_id
+      "#{@alias_key}"
+    end
+
+    # resource appearance in test reports.
+    def to_s
+      "mail_alias #{resource_id}"
+    end
+
+    # aliased_to matcher checks if the given alias_value is set to the initialized alias_key
+    def aliased_to?(alias_value)
+      # /etc/aliases if the file where the alias and its value(s) are stored
+      cmd = inspec.command("cat /etc/aliases | grep '^#{@alias_key}:'")
+      raise Inspec::Exceptions::ResourceFailed, "#{@alias_key} is not a valid key in the aliases" if cmd.exit_status.to_i != 0
+
+      # in general aliases file contains : separated values like alias_key : alias_value1, alias_value2
+      alias_values_combined = cmd.stdout.split(":").map(&:strip)[1]
+      alias_values_splitted = alias_values_combined.split(",").map(&:strip)
+      alias_values_splitted.include?(alias_value)
+    end
+  end
+end

data/lib/inspec/resources/routing_table.rb

@@ -0,0 +1,137 @@
+require "inspec/resources/command"
+
+module Inspec::Resources
+  class Routingtable < Inspec.resource(1)
+    # resource internal name.
+    name "routing_table"
+
+    # Restrict to only run on the below platforms (if none were given,
+    # all OS's and cloud API's supported)
+    supports platform: "unix"
+    supports platform: "windows"
+
+    desc "Use the `routing_table` Chef InSpec audit resource to test the routing information parameters(destination, gateway and interface) present in the routing table."
+
+    example <<~EXAMPLE
+      describe routing_table do
+        it do
+          should have_entry(
+            :destination => '192.168.43.1/32',
+            :interface   => 'lxdbr0',
+            :gateway     => '172.31.80.1',
+          )
+        end
+      end
+
+      describe routing_table do
+        it { should have_entry(destination: '0.0.0.0', interface: 'eth0', gateway: '172.31.80.1') }
+      end
+    EXAMPLE
+
+    def initialize
+      skip_resource "The `routing_table` resource is not yet available on your OS." unless inspec.os.unix? || inspec.os.windows?
+      # fetch the routing information and store it in @routing_info (could be hash, tbd)
+      @routing_info = {}
+      fetch_routing_information
+    end
+
+    # resource appearance in test reports.
+    def to_s
+      "routing_table"
+    end
+
+    def has_entry?(input_route)
+      # check if the destination, gateway, interface exists as part of the routing_info
+      if input_route.key?(:destination) && input_route.key?(:gateway) && input_route.key?(:interface)
+        # check if there is key with destination's value in hash;
+        # if yes, check if destination and gateway is present else return false
+        @routing_info.key?(input_route[:destination]) ? @routing_info[input_route[:destination]].include?([input_route[:gateway], input_route[:interface]]) : false
+      else
+        raise Inspec::Exceptions::ResourceSkipped, "One or more missing key, have_entry? matcher expects a hash with 3 keys: destination, gateway and interface"
+      end
+    end
+
+    private
+
+    # fetches the routing information for the system
+    def fetch_routing_information
+      # check if netstat is available on the system
+      utility = find_netstat_or_error
+
+      # the command to fetch the routing information
+      fetch_route_cmd = "#{utility} -rn"
+
+      # execute the above netstat command
+      cmd = inspec.command(fetch_route_cmd)
+
+      # raise error if the exit status is not zero;
+      raise Inspec::Exceptions::ResourceFailed, "Executing netstat failed: #{cmd.stderr}" if cmd.exit_status.to_i != 0
+
+      # Todo:
+      # Improve logic to fetch destination, gateway & interface efficiently.
+      # The below logic assumes the following:
+      # 1. destination, gateway & interface header is present as Destination, Gateway & (Iface or Netif or Interface) respectively.
+      #    (Netif on BSD, Darwin,Iface on linux & Interface on Windows)
+      # 2. there is no blank data for any columns or the blank data are present after the interface column.
+
+      # cmd.stdout is the standard out of netstat -rn; split on new line to get the rows
+      raw_route_info = cmd.stdout.split("\n")
+
+      # since raw_route_info contains some row before the header (i.e. Destination Gateway ...); remove those rows
+      raw_route_info.shift until raw_route_info[0] =~ /Destination/i
+
+      # split each rows based on space to get the individual columns
+      # raw_route_info is now array of arrays with the routing information
+      raw_route_info.map! { |info| info.strip.split }
+
+      # these variables will store the indices where destination, gateway and interface are present
+      destination_index, gateway_index, interface_index = -1, -1, -1
+
+      # The headers in windows are as:
+      # Network Destination        Netmask          Gateway       Interface  Metric
+      # Splitting on space makes "Network Destination" to be two separate values as "Network" & "Destination"
+      # Remove "Network" value to apply the logic of finding index
+      raw_route_info[0].shift if inspec.os.windows?
+
+      # find the indices of destination, gateway and interface;
+      # because the position of gateway & interface varies with operating system
+      raw_route_info[0].each_with_index do |header, index|
+        if header =~ /Destination/i
+          destination_index = index
+        elsif header =~ /Gateway/i
+          gateway_index = index
+        elsif header =~ /Iface|Netif|Interface/i
+          interface_index = index
+        end
+      end
+
+      # remove the initial header consisting of Destination, Gateway, Mask, ... since this is of no use
+      raw_route_info.shift
+
+      # check the indices are assigned with some index and not -1
+      if destination_index != -1 && gateway_index != -1 && interface_index != -1
+        # iterate through the route_info; and find destination, gateway and interface from each row
+        raw_route_info.each do |info|
+          # if value exists at the destination_index, gateway_index, and interface_index; store the value in @routing_info
+          if !info[destination_index].nil? && !info[gateway_index].nil? && !info[interface_index].nil?
+            # if the destination_key is already present, append the gateway & interface; else create new array and add them
+            if @routing_info.key?(info[destination_index])
+              @routing_info[info[destination_index]] << [info[gateway_index], info[interface_index]]
+            else
+              @routing_info[info[destination_index]] = [[info[gateway_index], info[interface_index]]]
+            end
+          end
+        end
+      end
+    end
+
+    # check if netstat is available on the system
+    def find_netstat_or_error
+      %w{/usr/sbin/netstat /sbin/netstat /usr/bin/netstat /bin/netstat netstat}.each do |cmd|
+        return cmd if inspec.command(cmd).exist?
+      end
+
+      raise Inspec::Exceptions::ResourceFailed, "Could not find `netstat` utility to view routing table information"
+    end
+  end
+end

data/lib/inspec/resources/service.rb

@@ -537,9 +537,22 @@ module Inspec::Resources
     end
 
     def info(service_name)
+      # `service -l` lists all files in /etc/rc.d and the local startup directories
+      # % service -l
+      # accounting
+      # addswap
+      # adjkerntz
+      # apm
+      # archdep
+      cmd = inspec.command("#{service_ctl} -l")
+      return nil if cmd.exit_status != 0
+
+      # search for the service
+      srv = /^#{service_name}$/.match(cmd.stdout)
+      return nil if srv.nil? || srv[0].nil?
+
       # check if service is enabled
       cmd = inspec.command("#{service_ctl} #{service_name} enabled")
-
       enabled = cmd.exit_status == 0
 
       # check if the service is running

data/lib/inspec/resources/user.rb

@@ -1 +1,13 @@
 require "inspec/resources/users"
+# user resource belong_to matcher for serverspec compatibility
+RSpec::Matchers.define :belong_to_primary_group do |group|
+  match do |user|
+    user.belongs_to_primary_group?(group)
+  end
+end
+
+RSpec::Matchers.define :belong_to_group do |group|
+  match do |user|
+    user.belongs_to_group?(group)
+  end
+end

data/lib/inspec/resources/users.rb

@@ -137,20 +137,17 @@ module Inspec::Resources
   #   its('badpasswordattempts') { should eq 0 }
   # end
   #
-  # The following  Serverspec  matchers are deprecated in favor for direct value access
+  # The following  Serverspec  matchers were deprecated in favor for direct value access
+  # but are made available as part of Serverspec compatibility in March, 2022.
   #
   # describe user('root') do
   #   it { should belong_to_group 'root' }
+  #   it { should belong_to_primary_group 'root' }
   #   it { should have_uid 0 }
   #   it { should have_home_directory '/root' }
   #   it { should have_login_shell '/bin/bash' }
   #   its('minimum_days_between_password_change') { should eq 0 }
   #   its('maximum_days_between_password_change') { should eq 99 }
-  # end
-  #
-  # ServerSpec tests that are not supported:
-  #
-  # describe user('root') do
   #   it { should have_authorized_key 'ssh-rsa ADg54...3434 user@example.local' }
   #   its(:encrypted_password) { should eq 1234 }
   # end
@@ -258,36 +255,56 @@ module Inspec::Resources
 
     # implement 'mindays' method to be compatible with serverspec
     def minimum_days_between_password_change
-      Inspec.deprecate(:resource_user_serverspec_compat, "The user resource `minimum_days_between_password_change` property is deprecated. Please use `mindays`.")
       mindays
     end
 
     # implement 'maxdays' method to be compatible with serverspec
     def maximum_days_between_password_change
-      Inspec.deprecate(:resource_user_serverspec_compat, "The user resource `maximum_days_between_password_change` property is deprecated. Please use `maxdays`.")
       maxdays
     end
 
     # implements rspec has matcher, to be compatible with serverspec
     # @see: https://github.com/rspec/rspec-expectations/blob/master/lib/rspec/matchers/built_in/has.rb
+    # has_uid matcher: compatibility with serverspec
     def has_uid?(compare_uid)
-      Inspec.deprecate(:resource_user_serverspec_compat, "The user resource `has_uid?` matcher is deprecated.")
       uid == compare_uid
     end
 
+    # has_home_directory matcher: compatibility with serverspec
     def has_home_directory?(compare_home)
-      Inspec.deprecate(:resource_user_serverspec_compat, "The user resource `has_home_directory?` matcher is deprecated. Please use `its('home')`.")
       home == compare_home
     end
 
+    # has_login_shell matcher: compatibility with serverspec
     def has_login_shell?(compare_shell)
-      Inspec.deprecate(:resource_user_serverspec_compat, "The user resource `has_login_shell?` matcher is deprecated. Please use `its('shell')`.")
       shell == compare_shell
     end
 
-    def has_authorized_key?(_compare_key)
-      Inspec.deprecate(:resource_user_serverspec_compat, "The user resource `has_authorized_key?` matcher is deprecated. There is no currently implemented alternative")
-      raise NotImplementedError
+    # has_authorized_key matcher: compatibility with serverspec
+    def has_authorized_key?(compare_key)
+      # get_authorized_keys returns the list of key, check if given key is included.
+      get_authorized_keys.include?(compare_key)
+    end
+
+    # belongs_to_primary_group matcher: compatibility with serverspec
+    def belongs_to_primary_group?(group_name)
+      groupname == group_name
+    end
+
+    # belongs_to_group matcher: compatibility with serverspec
+    def belongs_to_group?(group_name)
+      groups.include?(group_name)
+    end
+
+    # encrypted_password property: compatibility with serverspec
+    # it allows to run test against the hashed passwords of the given user
+    # applicable for unix/linux systems with getent utility.
+    def encrypted_password
+      raise Inspec::Exceptions::ResourceSkipped, "encrypted_password property is not applicable for your system" if inspec.os.windows? || inspec.os.darwin?
+
+      # shadow_information returns array of the information from the shadow file
+      # the value at 1st index is the encrypted_password information
+      shadow_information[1]
     end
 
     def to_s
@@ -314,6 +331,54 @@ module Inspec::Resources
 
       @cred_cache = @user_provider.credentials(@username) unless @user_provider.nil?
     end
+
+    # helper method for has_authorized_key matcher
+    # get_authorized_keys return the key/keys stored in the authorized_keys path
+    def get_authorized_keys
+      # cat is used in unix system to display content of file; similarly type is used for windows
+      bin = inspec.os.windows? ? "type" : "cat"
+
+      # auth_path gets assigned with the valid path for authorized_keys
+      auth_path = ""
+
+      # possible paths where authorized_keys are stored
+      # inspec.command is used over inspec.file because inspec.file requires absolute path
+      %w{~/.ssh/authorized_keys ~/.ssh/authorized_keys2}.each do |path|
+        if inspec.command("#{bin} #{path}").exit_status == 0
+          auth_path = path
+          break
+        end
+      end
+
+      # if auth_path is empty, no valid path was found, hence raise exception
+      raise Inspec::Exceptions::ResourceSkipped, "Can't find any valid path for authorized_keys" if auth_path.empty?
+
+      # authorized_keys are obtained in the standard output;
+      # split keys on newline if more than one keys are part of authorized_keys
+      inspec.command("#{bin} #{auth_path}").stdout.split("\n").map(&:strip)
+    end
+
+    # Helper method for encrypted_password property
+    def shadow_information
+      # check if getent is available on the system
+      bin = find_getent_utility
+
+      # fetch details of the passwd file for the current user using getent
+      cmd = inspec.command("#{bin} shadow #{@username}")
+      raise Inspec::Exceptions::ResourceFailed, "Executing #{bin} shadow #{@username} failed: #{cmd.stderr}" if cmd.exit_status.to_i != 0
+
+      # shadow information are : separated values, split and return
+      cmd.stdout.split(":").map(&:strip)
+    end
+
+    # check if getent exist in the system
+    def find_getent_utility
+      %w{/usr/bin/getent /bin/getent getent}.each do |cmd|
+        return cmd if inspec.command(cmd).exist?
+      end
+
+      raise Inspec::Exceptions::ResourceFailed, "Could not find `getent` on your system."
+    end
   end
 
   # Class defined to compare for groups without case-sensitivity

data/lib/inspec/version.rb

@@ -1,3 +1,3 @@
 module Inspec
-  VERSION = "5.10.5".freeze
+  VERSION = "5.12.2".freeze
 end

data/lib/plugins/inspec-streaming-reporter-progress-bar/lib/inspec-streaming-reporter-progress-bar/streaming_reporter.rb

@@ -41,9 +41,9 @@ module InspecPlugins::StreamingReporterProgressBar
       # Groovy UTF-8 characters for everyone else...
       # ...even though they probably only work on Mac
       INDICATORS = {
-        "failed" => "×",
-        "skipped" => "↺",
-        "passed" => "✔",
+        "failed" => "× [FAILED] ",
+        "skipped" => "↺ [SKIPPED]",
+        "passed" => "✔ [PASSED] ",
       }.freeze
     end
 
@@ -54,58 +54,69 @@ module InspecPlugins::StreamingReporterProgressBar
     end
 
     def example_passed(notification)
-      control_id = notification.example.metadata[:id]
-      set_status_mapping(control_id, "passed")
-      show_progress(control_id) if control_ended?(control_id)
+      set_example(notification, "passed")
     end
 
     def example_failed(notification)
-      control_id = notification.example.metadata[:id]
-      set_status_mapping(control_id, "failed")
-      show_progress(control_id) if control_ended?(control_id)
+      set_example(notification, "failed")
     end
 
     def example_pending(notification)
-      control_id = notification.example.metadata[:id]
-      set_status_mapping(control_id, "skipped")
-      show_progress(control_id) if control_ended?(control_id)
+      set_example(notification, "skipped")
     end
 
     private
 
-    def show_progress(control_id)
+    def set_example(notification, status)
+      control_id = notification.example.metadata[:id]
+      title = notification.example.metadata[:title]
+      full_description = notification.example.metadata[:full_description]
+      control_impact = notification.example.metadata[:impact]
+      set_status_mapping(control_id, status)
+      show_progress(control_id, title, full_description, control_impact) if control_ended?(control_id)
+    end
+
+    def show_progress(control_id, title, full_description, control_impact)
       @bar ||= ProgressBar.new(controls_count, :bar, :counter, :percentage)
       sleep 0.1
       @bar.increment!
-      @bar.puts format_it(control_id)
-    rescue Exception => ex
-      raise "Exception in Progress Bar streaming reporter: #{ex}"
+      @bar.puts format_it(control_id, title, full_description, control_impact)
+    rescue StandardError => e
+      raise "Exception in Progress Bar streaming reporter: #{e}"
     end
 
-    def format_it(control_id)
+    def format_it(control_id, title, full_description, control_impact)
       control_status = if @status_mapping[control_id].include? "failed"
                          "failed"
-                       elsif @status_mapping[control_id].include? "skipped"
-                         "skipped"
                        elsif @status_mapping[control_id].include? "passed"
                          "passed"
+                       else
+                         @status_mapping[control_id].include? "skipped"
+                         "skipped"
                        end
-
       indicator = INDICATORS[control_status]
       message_to_format = ""
       message_to_format += "#{indicator}  "
-      message_to_format += control_id.to_s.lstrip.force_encoding(Encoding::UTF_8)
+      message_to_format += "#{control_id.to_s.strip.dup.force_encoding(Encoding::UTF_8)}  "
+      message_to_format += "#{title.gsub(/\n*\s+/, " ").to_s.force_encoding(Encoding::UTF_8)}  " if title
+      message_to_format += "#{full_description.gsub(/\n*\s+/, " ").to_s.force_encoding(Encoding::UTF_8)}  " unless title
       format_with_color(control_status, message_to_format)
+    rescue Exception => e
+      raise "Exception in show_progress: #{e}"
     end
 
     def format_with_color(color_name, text)
       "#{COLORS[color_name]}#{text}#{COLORS["reset"]}"
+    rescue StandardError => e
+      raise "Exception in format_with_color: #{e}"
     end
 
     # status mapping with control id to decide the final state of the control
     def set_status_mapping(control_id, status)
       @status_mapping[control_id] = [] if @status_mapping[control_id].nil?
       @status_mapping[control_id].push(status)
+    rescue StandardError => e
+      raise "Exception in format_with_color: #{e}"
     end
 
   end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: inspec-core
 version: !ruby/object:Gem::Version
-  version: 5.10.5
+  version: 5.12.2
 platform: ruby
 authors:
 - Chef InSpec Team
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2022-03-23 00:00:00.000000000 Z
+date: 2022-04-08 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: chef-telemetry
@@ -569,6 +569,7 @@ files:
 - lib/inspec/resources/linux_kernel_parameter.rb
 - lib/inspec/resources/login_defs.rb
 - lib/inspec/resources/lxc.rb
+- lib/inspec/resources/mail_alias.rb
 - lib/inspec/resources/mongodb.rb
 - lib/inspec/resources/mongodb_conf.rb
 - lib/inspec/resources/mongodb_session.rb
@@ -613,6 +614,7 @@ files:
 - lib/inspec/resources/rabbitmq_conf.rb
 - lib/inspec/resources/rabbitmq_config.rb
 - lib/inspec/resources/registry_key.rb
+- lib/inspec/resources/routing_table.rb
 - lib/inspec/resources/runit_service.rb
 - lib/inspec/resources/script.rb
 - lib/inspec/resources/security_identifier.rb