inspec-core 2.2.10 → 2.2.16

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA256:
-  metadata.gz: d5a0147fcfec73a7c62fafd050d13b9cf3696d33892a769295cae623af5126fc
-  data.tar.gz: ea24534b1a9887a625310aabbab3054884d0d54ab0462378b2e1adb6d6a9b8fa
+  metadata.gz: d354cf05e740d0b2e7a605fe1a22b543ed644b42b90a2c1e245d79e49524673d
+  data.tar.gz: d4b7ff00cf12d7667162518314798d6514c6d57e6829adcc918075e5267deb6c
 SHA512:
-  metadata.gz: 4a2da0d531f2611b278ad64d6d877a48ab6e70226e4a535c409b3a05c5e81582fc049800de66eae9690848f85822903d32275b82ea6c5cfab830a2db2304cef0
-  data.tar.gz: 9d86cf80e4fc09a27fce83455c57ea349f10ed301f12ef30ac3d987da3b2cc18173d903574ade9ca702d7cb3eb76f766207a2511f5047adb0949c4cfc670a4ef
+  metadata.gz: d00d6a382fc7d98812effb6d4fc6a4d20b4ac89c96e7af385a81cb7373bbfcebb1181f99ea06708e7c87e8d1477d29e6f86a632ab97bf92d33e532521eec32c0
+  data.tar.gz: 28bbac8ca3e11bd5fe25b2e7f94bf91035417a7501f1a3354c583d3b7215f30b4699372c93d4cc37eb4e0476515746f632ab2462eb936cd0e017b47d51c51bed

data/CHANGELOG.md

@@ -1,43 +1,55 @@
 # Change Log
 <!-- usage documentation: http://expeditor-docs.es.chef.io/configuration/changelog/ -->
-<!-- latest_release 2.2.8 -->
-## [v2.2.8](https://github.com/inspec/inspec/tree/v2.2.8) (2018-06-07)
+<!-- latest_release 2.2.16 -->
+## [v2.2.16](https://github.com/inspec/inspec/tree/v2.2.16) (2018-06-15)
 
-#### New Resources
-- Add aws_elb and aws_elbs resources [#3079](https://github.com/inspec/inspec/pull/3079) ([clintoncwolfe](https://github.com/clintoncwolfe))
+#### Merged Pull Requests
+- deprecate azure_generic_resource [#3132](https://github.com/inspec/inspec/pull/3132) ([chris-rock](https://github.com/chris-rock))
 <!-- latest_release -->
 
-<!-- release_rollup since=2.1.84 -->
-### Changes since 2.1.84 release
-
-#### New Resources
-- Add aws_elb and aws_elbs resources [#3079](https://github.com/inspec/inspec/pull/3079) ([clintoncwolfe](https://github.com/clintoncwolfe)) <!-- 2.2.8 -->
-- Adds a aws_flow_log resource with unit and integration testing. [#2906](https://github.com/inspec/inspec/pull/2906) ([miah](https://github.com/miah)) <!-- 2.2.7 -->
-
-#### Bug Fixes
-- Update documentation for shadow resource. [#3042](https://github.com/inspec/inspec/pull/3042) ([miah](https://github.com/miah)) <!-- 2.2.6 -->
-- Two fixes to FilterTable `where` criteria handling [#3045](https://github.com/inspec/inspec/pull/3045) ([clintoncwolfe](https://github.com/clintoncwolfe)) <!-- 2.2.0 -->
+<!-- release_rollup since=2.2.10 -->
+### Changes since 2.2.10 release
 
 #### Enhancements
-- Allow custom resources to access all other resources [#3108](https://github.com/inspec/inspec/pull/3108) ([jquick](https://github.com/jquick)) <!-- 2.2.3 -->
-- Add common methods to FilterTable [#3104](https://github.com/inspec/inspec/pull/3104) ([clintoncwolfe](https://github.com/clintoncwolfe)) <!-- 2.2.2 -->
-- Detect windows packages with trailing/leading spaces [#3106](https://github.com/inspec/inspec/pull/3106) ([jquick](https://github.com/jquick)) <!-- 2.1.86 -->
+- Fix unit tests for ruby 2.5 [#3125](https://github.com/inspec/inspec/pull/3125) ([jquick](https://github.com/jquick)) <!-- 2.2.12 -->
 
 #### Merged Pull Requests
-- Clean up issues in documentation [#3058](https://github.com/inspec/inspec/pull/3058) ([miah](https://github.com/miah)) <!-- 2.2.5 -->
-- Update Junit.rb to add failures attribute [#3086](https://github.com/inspec/inspec/pull/3086) ([scboucher](https://github.com/scboucher)) <!-- 2.2.4 -->
-- Add lazy-loading to FilterTable [#3093](https://github.com/inspec/inspec/pull/3093) ([clintoncwolfe](https://github.com/clintoncwolfe)) <!-- 2.2.1 -->
-- Refactor: Perform internal rename and add comments to FilterTable [#3047](https://github.com/inspec/inspec/pull/3047) ([clintoncwolfe](https://github.com/clintoncwolfe)) <!-- 2.1.88 -->
-- Spellcheck FilterTable Developer Documentation [#3111](https://github.com/inspec/inspec/pull/3111) ([jerryaldrichiii](https://github.com/jerryaldrichiii)) <!-- 2.1.87 -->
-- support local npm package searches [#3105](https://github.com/inspec/inspec/pull/3105) ([arlimus](https://github.com/arlimus)) <!-- 2.1.85 -->
+- deprecate azure_generic_resource [#3132](https://github.com/inspec/inspec/pull/3132) ([chris-rock](https://github.com/chris-rock)) <!-- 2.2.16 -->
+- Bump train version for inspec [#3147](https://github.com/inspec/inspec/pull/3147) ([jquick](https://github.com/jquick)) <!-- 2.2.15 -->
+- Add insecure option to the automate report json [#3124](https://github.com/inspec/inspec/pull/3124) ([jquick](https://github.com/jquick)) <!-- 2.2.14 -->
+- Add list properties back to shadow [#3140](https://github.com/inspec/inspec/pull/3140) ([clintoncwolfe](https://github.com/clintoncwolfe)) <!-- 2.2.13 -->
+- Translate `auditd -s` RHEL output to match CentOS [#3114](https://github.com/inspec/inspec/pull/3114) ([jerryaldrichiii](https://github.com/jerryaldrichiii)) <!-- 2.2.11 -->
 <!-- release_rollup -->
 
 <!-- latest_stable_release -->
+## [v2.2.10](https://github.com/inspec/inspec/tree/v2.2.10) (2018-06-08)
+
+#### New Resources
+- Adds a aws_flow_log resource with unit and integration testing. [#2906](https://github.com/inspec/inspec/pull/2906) ([miah](https://github.com/miah))
+- Add aws_elb and aws_elbs resources [#3079](https://github.com/inspec/inspec/pull/3079) ([clintoncwolfe](https://github.com/clintoncwolfe))
+
+#### Enhancements
+- Detect windows packages with trailing/leading spaces [#3106](https://github.com/inspec/inspec/pull/3106) ([jquick](https://github.com/jquick))
+- Add common methods to FilterTable [#3104](https://github.com/inspec/inspec/pull/3104) ([clintoncwolfe](https://github.com/clintoncwolfe))
+- Allow custom resources to access all other resources [#3108](https://github.com/inspec/inspec/pull/3108) ([jquick](https://github.com/jquick))
+
+#### Bug Fixes
+- Two fixes to FilterTable `where` criteria handling [#3045](https://github.com/inspec/inspec/pull/3045) ([clintoncwolfe](https://github.com/clintoncwolfe))
+- Update documentation for shadow resource. [#3042](https://github.com/inspec/inspec/pull/3042) ([miah](https://github.com/miah))
+
+#### Merged Pull Requests
+- support local npm package searches [#3105](https://github.com/inspec/inspec/pull/3105) ([arlimus](https://github.com/arlimus))
+- Spellcheck FilterTable Developer Documentation [#3111](https://github.com/inspec/inspec/pull/3111) ([jerryaldrichiii](https://github.com/jerryaldrichiii))
+- Refactor: Perform internal rename and add comments to FilterTable [#3047](https://github.com/inspec/inspec/pull/3047) ([clintoncwolfe](https://github.com/clintoncwolfe))
+- Add lazy-loading to FilterTable [#3093](https://github.com/inspec/inspec/pull/3093) ([clintoncwolfe](https://github.com/clintoncwolfe))
+- Update Junit.rb to add failures attribute [#3086](https://github.com/inspec/inspec/pull/3086) ([scboucher](https://github.com/scboucher))
+- Clean up issues in documentation [#3058](https://github.com/inspec/inspec/pull/3058) ([miah](https://github.com/miah))
+<!-- latest_stable_release -->
+
 ## [v2.1.84](https://github.com/inspec/inspec/tree/v2.1.84) (2018-05-31)
 
 #### Merged Pull Requests
 - Generate new org builds [#3087](https://github.com/inspec/inspec/pull/3087) ([jquick](https://github.com/jquick))
-<!-- latest_stable_release -->
 
 ## [v2.1.83](https://github.com/chef/inspec/tree/v2.1.83) (2018-05-18)
 

data/docs/reporters.md

@@ -115,3 +115,47 @@ This reporter includes all information from the rspec runner. Unlike the json re
 ### html
 
 This renders html code to view your tests in a browser. It includes all the test and summary information.
+
+
+## Automate Reporter
+
+The automate reporter type is a special reporter used with the Automate 2 suite. To use this reporter you must pass in the correct configuration via a json config `--json-config`.
+
+Example config:
+```json
+"reporter": {
+    "automate" : {
+        "stdout" : false,
+        "url" : "https://YOUR_A2_URL/data-collector/v0/",
+        "token" : "YOUR_A2_ADMIN_TOKEN",
+        "insecure" : true,
+        "node_name" : "inspec_test_node",
+        "environment" : "prod"
+    }
+}
+```
+
+### Mandatory fields:
+#### stdout
+This will either suppress or show the automate report in the CLI screen on completion
+
+#### url
+This is your Automate 2 url. Append `data-collector/v0/` at the end.
+
+#### token
+This is your Automate 2 token. You can generate this token by navigating to the admin tab of A2 and then api keys.
+
+### Optional fields
+#### insecure
+This will disable or enable the ssl check when accessing the Automate 2 instance.
+
+PLEASE NOTE: These fields are ONLY needed if you do not have chef-client attached to a chef server running on your node. The fields below will be automaticlly pulled from the chef server.
+
+#### node_name
+This will be the node name which shows up in Automate 2.
+
+#### node_uuid
+This overrides the node uuid sent up to Automate 2. On non-chef nodes we will try to generate a static node uuid for you from your hardware. This will almost never be needed unless your working with a unique virtual setup.
+
+#### environment
+This will set the enviroment metadata for Automate 2.

data/docs/resources/http.md.erb

@@ -135,7 +135,7 @@ In InSpec 2.0, the HTTP test will automatically execute remotely whenever InSpec
 
 `open_timeout` may be specified for a timeout for opening connections (default to 60).
 
-    describe('http://localhost:8080/ping',
+    describe http('http://localhost:8080/ping',
                   open_timeout: '90') do
       ...
     end
@@ -144,7 +144,7 @@ In InSpec 2.0, the HTTP test will automatically execute remotely whenever InSpec
 
 `read_timeout` may be specified for a timeout for reading connections (default to 60).
 
-    describe('http://localhost:8080/ping',
+    describe http('http://localhost:8080/ping',
                   read_timeout: '90') do
       ...
     end
@@ -153,7 +153,7 @@ In InSpec 2.0, the HTTP test will automatically execute remotely whenever InSpec
 
 `ssl_verify` may be specified to enable or disable verification of SSL certificates (default to `true`).
 
-    describe('http://localhost:8080/ping',
+    describe http('http://localhost:8080/ping',
                   ssl_verify: true) do
       ...
     end

data/docs/resources/shadow.md.erb

@@ -27,7 +27,7 @@ These entries are defined as a colon-delimited row in the file, one row per user
 A `shadow` resource block declares user properties to be tested:
 
     describe shadow do
-      its('user') { should_not include 'forbidden_user' }
+      its('users') { should_not include 'forbidden_user' }
     end
 
 Properties can be used as a single query:
@@ -39,7 +39,7 @@ Properties can be used as a single query:
 Use the `.where` method to find properties that match a value:
 
     describe shadow.where { min_days == '0' } do
-      its ('user') { should include 'nfs' }
+      its ('users') { should include 'nfs' }
     end
 
     describe shadow.where { password =~ /[x|!|*]/ } do
@@ -48,14 +48,14 @@ Use the `.where` method to find properties that match a value:
 
 The following properties are available:
 
-* `user`
-* `password`
-* `last_change`
+* `users`
+* `passwords`
+* `last_changes`
 * `min_days`
 * `max_days`
 * `warn_days`
 * `inactive_days`
-* `expiry_date`
+* `expiry_dates`
 * `reserved`
 
 <br>
@@ -67,13 +67,13 @@ The following examples show how to use this InSpec audit resource.
 ### Test for a forbidden user
 
     describe shadow do
-      its('user') { should_not include 'forbidden_user' }
+      its('users') { should_not include 'forbidden_user' }
     end
 
 ### Test that a user appears one time
 
-    describe shadow.user('bin') do
-      its('password') { should cmp 'x' }
+    describe shadow.users('bin') do
+      its('passwords') { should cmp 'x' }
       its('count') { should eq 1 }
     end
 
@@ -81,55 +81,55 @@ The following examples show how to use this InSpec audit resource.
 
 ## Properties
 
-### user
+### users
 
-The `user` property tests if the username exists `/etc/shadow`:
+The `users` property tests if the username exists `/etc/shadow`:
 
-    its('user') { should eq 'root' }
+    its('users') { should include 'root' }
 
-### password
+### passwords
 
-The `password` property returns the encrypted password string from the shadow file. The returned string may not be an encrypted password, but rather a `*` or similar which indicates that direct logins are not allowed.
+The `passwords` property returns the encrypted password string from the shadow file. The returned string may not be an encrypted password, but rather a `*` or similar which indicates that direct logins are not allowed.
 
 For example:
 
-    its('password') { should cmp '*' }
+    its('passwords') { should cmp '*' }
 
-### last_change
+### last\_changes
 
-The `last_change` property tests the last time a password was changed:
+The `last_changes` property tests the last time a password was changed:
 
-    its('last_change') { should be_empty }
+    its('last_changes') { should be_empty }
 
-### min_days
+### min\_days
 
 The `min_days` property tests the minimum number of days a password must exist, before it may be changed:
 
     its('min_days') { should eq 0 }
 
-### max_days
+### max\_days
 
 The `max_days` property tests the maximum number of days after which a password must be changed:
 
     its('max_days') { should eq 90 }
 
-### warn_days
+### warn\_days
 
 The `warn_days` property tests the number of days a user is warned about an expiring password:
 
     its('warn_days') { should eq 7 }
 
-### inactive_days
+### inactive\_days
 
 The `inactive_days` property tests the number of days a user must be inactive before the user account is disabled:
 
     its('inactive_days') { should be_empty }
 
-### expiry_date
+### expiry\_dates
 
-The `expiry_date` property tests the number of days a user account has been disabled:
+The `expiry_dates` property tests the number of days a user account has been disabled:
 
-    its('expiry_date') { should be_empty }
+    its('expiry_dates') { should be_empty }
 
 ### count
 

data/docs/resources/windows_task.md.erb

@@ -33,38 +33,30 @@ The following examples show how to use this InSpec resource.
 
 ### Tests that a task is enabled
 
-    ```ruby
     describe windows_task('\Microsoft\Windows\Time Synchronization\SynchronizeTime') do
       it { should be_enabled }
     end
-    ```
 
 ### Tests that a task is disabled
 
-    ```ruby
     describe windows_task('\Microsoft\Windows\AppID\PolicyConverter') do
       it { should be_disabled }
     end
-    ```
 
 ### Tests the configuration parameters of a task
 
-    ```ruby
     describe windows_task('\Microsoft\Windows\AppID\PolicyConverter') do
       its('logon_mode') { should eq 'Interactive/Background' }
       its('last_result') { should eq '1' }
       its('task_to_run') { should cmp '%Windir%\system32\appidpolicyconverter.exe' }
       its('run_as_user') { should eq 'LOCAL SERVICE' }
     end
-    ```
 
 ### Tests that a task is defined
 
-    ```ruby
     describe windows_task('\Microsoft\Windows\Defrag\ScheduledDefrag') do
       it { should exist }
     end
-    ```
 
 ## Gathering Tasknames
 
@@ -76,7 +68,6 @@ rather than use the `list` output you can use `CSV` if it is easier.
 
 Please make sure you use the full TaskName (include the prefix `\`) within your control
 
-    ```ruby
     C:\>schtasks /query /FO list
     ...
     Folder: \Microsoft\Windows\Diagnosis
@@ -86,7 +77,6 @@ Please make sure you use the full TaskName (include the prefix `\`) within your
     Status:        Ready
     Logon Mode:    Interactive/Background
     ...
-    ```
 
 <br>
 

data/inspec-core.gemspec

@@ -22,7 +22,7 @@ Gem::Specification.new do |spec|
 
   spec.required_ruby_version = '>= 2.3'
 
-  spec.add_dependency 'train-core', '~> 1.4'
+  spec.add_dependency 'train-core', '~> 1.4', '>= 1.4.15'
   spec.add_dependency 'thor', '~> 0.20'
   spec.add_dependency 'json', '>= 1.8', '< 3.0'
   spec.add_dependency 'method_source', '~> 0.8'

data/lib/bundles/inspec-compliance/README.md

@@ -37,7 +37,7 @@ Commands:
   inspec compliance version           # displays the version of the Chef Compliance server
 ```
 
-### Login with Chef Automate2
+### Login with Chef Automate 2
 
 You will need an API token for authentication. You can retrieve one via the admin section of your A2 web gui.
 
@@ -45,6 +45,20 @@ You will need an API token for authentication. You can retrieve one via the admi
 $ inspec compliance login https://automate2.compliance.test --insecure --user 'admin' --token 'zuop..._KzE'
 ```
 
+#### Login with Chef Automate 2 via json-config
+
+With automate 2 you can automatically login by passing a json config via `--json-config`
+
+Example:
+```json
+"compliance": {
+    "server" : "https://YOUR_A2_URL",
+    "token" : "YOUR_A2_ADMIN_TOKEN",
+    "user" : "YOUR_A2_USER",
+    "insecure" : true
+}
+```
+
 ### Login with Chef Automate
 
 You will need an access token for authentication. You can retrieve one via [UI](https://docs.chef.io/api_delivery.html) or [CLI](https://docs.chef.io/ctl_delivery.html#delivery-token).

data/lib/inspec/reporters/automate.rb

@@ -8,6 +8,9 @@ module Inspec::Reporters
     def initialize(config)
       super(config)
 
+      # allow the insecure flag
+      @config['verify_ssl'] = !@config['insecure'] if @config.key?('insecure')
+
       # default to not verifying ssl for sending reports
       @config['verify_ssl'] = @config['verify_ssl'] || false
     end

data/lib/inspec/version.rb

@@ -4,5 +4,5 @@
 # author: Christoph Hartmann
 
 module Inspec
-  VERSION = '2.2.10'
+  VERSION = '2.2.16'
 end

data/lib/resources/auditd.rb

@@ -58,6 +58,14 @@ module Inspec::Resources
 
     def status(name = nil)
       @status_content ||= inspec.command('/sbin/auditctl -s').stdout.chomp
+
+      # See: https://github.com/inspec/inspec/issues/3113
+      if @status_content =~ /^AUDIT_STATUS/
+        @status_content = @status_content.gsub('AUDIT_STATUS: ', '')
+                                         .tr(' ', "\n")
+                                         .tr('=', ' ')
+      end
+
       @status_params ||= Hash[@status_content.scan(/^([^ ]+) (.*)$/)]
 
       return @status_params[name] if name

data/lib/resources/shadow.rb

@@ -44,29 +44,29 @@ module Inspec::Resources
 
     filtertable = FilterTable.create
     filtertable
-      .add_accessor(:where)
-      .add_accessor(:entries)
-      .add(:user, field: 'user')
-      .add(:password, field: 'password')
-      .add(:last_change, field: 'last_change')
-      .add(:min_days, field: 'min_days')
-      .add(:max_days, field: 'max_days')
-      .add(:warn_days, field: 'warn_days')
-      .add(:inactive_days, field: 'inactive_days')
-      .add(:expiry_date, field: 'expiry_date')
-      .add(:reserved, field: 'reserved')
-
-    filtertable.add(:content) { |t, _|
+      .register_column(:users, field: 'user')
+      .register_column(:passwords, field: 'password')
+      .register_column(:last_changes, field: 'last_change')
+      .register_column(:min_days, field: 'min_days')
+      .register_column(:max_days, field: 'max_days')
+      .register_column(:warn_days, field: 'warn_days')
+      .register_column(:inactive_days, field: 'inactive_days')
+      .register_column(:expiry_dates, field: 'expiry_date')
+      .register_column(:reserved, field: 'reserved')
+    # These are deprecated, but we need to "alias" them
+    filtertable
+      .register_custom_property(:user) { |table, value| table.resource.user(value) }
+      .register_custom_property(:password) { |table, value| table.resource.password(value) }
+      .register_custom_property(:last_change) { |table, value| table.resource.last_change(value) }
+      .register_custom_property(:expiry_date) { |table, value| table.resource.expiry_date(value) }
+
+    filtertable.register_custom_property(:content) { |t, _|
       t.entries.map do |e|
         [e.user, e.password, e.last_change, e.min_days, e.max_days, e.warn_days, e.inactive_days, e.expiry_date].compact.join(':')
       end.join("\n")
     }
 
-    filtertable.add(:count) { |i, _|
-      i.entries.length
-    }
-
-    filtertable.connect(self, :set_params)
+    filtertable.install_filter_methods_on_resource(self, :set_params)
 
     def filter(query = {})
       return self if query.nil? || query.empty?
@@ -88,28 +88,30 @@ module Inspec::Resources
       Shadow.new(@path, content: content, filters: @filters + filters)
     end
 
-    def users(query = nil)
-      warn '[DEPRECATION] The shadow `users` property is deprecated and will be removed' \
-       ' in InSpec 3.0.  Please use `user` instead.'
-      query.nil? ? user : user(query)
+    # Next 4 are deprecated methods.  We define them here so we can emit a deprecation message.
+    # They are also defined on the Table, above.
+    def user(query = nil)
+      warn '[DEPRECATION] The shadow `user` property is deprecated and will be removed' \
+       ' in InSpec 3.0.  Please use `users` instead.'
+      query.nil? ? where.users : where('user' => query)
     end
 
-    def passwords(query = nil)
-      warn '[DEPRECATION] The shadow `passwords` property is deprecated and will be removed' \
-       ' in InSpec 3.0.  Please use `password` instead.'
-      query.nil? ? password : password(query)
+    def password(query = nil)
+      warn '[DEPRECATION] The shadow `password` property is deprecated and will be removed' \
+       ' in InSpec 3.0.  Please use `passwords` instead.'
+      query.nil? ? where.passwords : where('password' => query)
     end
 
-    def last_changes(query = nil)
-      warn '[DEPRECATION] The shadow `last_changes` property is deprecated and will be removed' \
-       ' in InSpec 3.0.  Please use `last_change` instead.'
-      query.nil? ? last_change : last_change(query)
+    def last_change(query = nil)
+      warn '[DEPRECATION] The shadow `last_change` property is deprecated and will be removed' \
+       ' in InSpec 3.0.  Please use `last_changes` instead.'
+      query.nil? ? where.last_changes : where('last_change' => query)
     end
 
-    def expiry_dates(query = nil)
-      warn '[DEPRECATION] The shadow `expiry_dates` property is deprecated and will be removed' \
-       ' in InSpec 3.0.  Please use `expiry_date` instead.'
-      query.nil? ? expiry_date : expiry_date(query)
+    def expiry_date(query = nil)
+      warn '[DEPRECATION] The shadow `expiry_date` property is deprecated and will be removed' \
+       ' in InSpec 3.0.  Please use `expiry_dates` instead.'
+      query.nil? ? where.expiry_dates : where('expiry_date' => query)
     end
 
     def lines

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: inspec-core
 version: !ruby/object:Gem::Version
-  version: 2.2.10
+  version: 2.2.16
 platform: ruby
 authors:
 - Dominik Richter
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2018-06-08 00:00:00.000000000 Z
+date: 2018-06-15 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: train-core
@@ -17,6 +17,9 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.4'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.4.15
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
@@ -24,6 +27,9 @@ dependencies:
     - - "~>"
       - !ruby/object:Gem::Version
         version: '1.4'
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: 1.4.15
 - !ruby/object:Gem::Dependency
   name: thor
   requirement: !ruby/object:Gem::Requirement