inspec-iggy 0.6.0 → 0.7.0

data/lib/inspec-iggy/platforms/aws_helper.rb

@@ -1,40 +1,57 @@
 # helpers for working with InSpec-AWS profiles
 
-require 'yaml'
+require "yaml"
 
 module InspecPlugins::Iggy::Platforms
   class AwsHelper
-    # find the additional parameters
+    # find the additional parameters for the 'describe'.
+    # NOTE: the first entry is going to map to the 'id' from the .tfstate file
     AWS_RESOURCE_QUALIFIERS = {
+      "aws_ec2_instance" => %i{instance_id},
+      "aws_elb" => %i{load_balancer_name},
+      "aws_security_group" => %i{group_id vpc_id},
+      "aws_subnet" => %i{subnet_id},
+      "aws_vpc" => %i{vpc_id},
     }.freeze
 
     # the iterators for the various resource types
     AWS_RESOURCE_ITERATORS = {
+      "aws_ec2_instance" => { "iterator" => "aws_ec2_instances", "index" => "instance_ids", "qualifiers" => [:vpc_id] },
+      "aws_elb" => { "iterator" => "aws_elbs", "index" => "load_balancer_names", "qualifiers" => [:vpc_id] },
+      "aws_security_group" => { "iterator" => "aws_security_groups", "index" => "group_ids", "qualifiers" => [:vpc_id] },
+      "aws_subnet" => { "iterator" => "aws_subnets", "index" => "subnet_ids", "qualifiers" => [:vpc_id] },
+      "aws_vpc" => { "iterator" => "aws_vpcs", "index" => "vpc_ids" },
     }.freeze
 
     AWS_REMOVED_PROPERTIES = {
+      "aws_elb" => %i{health_check security_groups}, # not sure how to test this yet
+      "aws_ec2_instance" => %i{security_groups}, # not sure how to test this yet
+    }.freeze
+
+    AWS_TRANSLATED_RESOURCE_PROPERTIES = {
+      "aws_elb" => { "name" => "load_balancer_name" },
+      "aws_security_group" => { "name" => "group_name" },
     }.freeze
 
     # Terraform boilerplate controls/controls.rb content
     def self.tf_controls
-      "\n\naws_vpc_id = attribute('aws_vpc_id', default: '', description: 'Optional AWS VPC identifier.')\n\n"
+      "\n"
     end
 
     # readme content
-    def self.readme
-    end
+    def self.readme; end
 
     # inspec.yml boilerplate content from
     # inspec/lib/plugins/inspec-init/templates/profiles/aws/inspec.yml
     def self.inspec_yml
       yml = {}
-      yml['inspec_version'] = '~> 4'
-      yml['depends'] = [{
-        'name' => 'inspec-aws',
-        'url' => 'https://github.com/inspec/inspec-aws/archive/master.tar.gz'
+      yml["inspec_version"] = "~> 4"
+      yml["depends"] = [{
+        "name" => "inspec-aws",
+        "url" => "https://github.com/inspec/inspec-aws/archive/master.tar.gz",
       }]
-      yml['supports'] = [{
-        'platform' => 'aws'
+      yml["supports"] = [{
+        "platform" => "aws",
       }]
       yml
     end

data/lib/inspec-iggy/platforms/azure_helper.rb

@@ -1,6 +1,6 @@
 # helpers for working with InSpec-Azure profiles
 
-require 'yaml'
+require "yaml"
 
 module InspecPlugins::Iggy::Platforms
   class AzureHelper
@@ -15,6 +15,9 @@ module InspecPlugins::Iggy::Platforms
     AZURE_REMOVED_PROPERTIES = {
     }.freeze
 
+    AZURE_TRANSLATED_RESOURCE_PROPERTIES = {
+    }.freeze
+
     # readme content
     def self.readme
       "\n"
@@ -24,13 +27,13 @@ module InspecPlugins::Iggy::Platforms
     # inspec/lib/plugins/inspec-init/templates/profiles/azure/inspec.yml
     def self.inspec_yml
       yml = {}
-      yml['inspec_version'] = '>= 2.2.7'
-      yml['depends'] = [{
-        'name' => 'inspec-azure',
-        'url' => 'https://github.com/inspec/inspec-azure/archive/master.tar.gz'
+      yml["inspec_version"] = ">= 2.2.7"
+      yml["depends"] = [{
+        "name" => "inspec-azure",
+        "url" => "https://github.com/inspec/inspec-azure/archive/master.tar.gz",
       }]
-      yml['supports'] = [{
-        'platform' => 'azure'
+      yml["supports"] = [{
+        "platform" => "azure",
       }]
       yml
     end

data/lib/inspec-iggy/platforms/gcp_helper.rb

@@ -1,87 +1,87 @@
 # helpers for working with InSpec-GCP profiles
 
-require 'yaml'
+require "yaml"
 
 module InspecPlugins::Iggy::Platforms
   class GcpHelper
     # find the additional parameters for the 'describe'
     GCP_RESOURCE_QUALIFIERS = {
-      'google_bigquery_dataset' => [:project, :name],
-      'google_bigquery_table' => [:project, :dataset, :name],
-      'google_cloudfunctions_cloud_function' => [:project, :location, :name],
-      'google_compute_address' => [:project, :location, :name],
-      'google_compute_autoscaler' => [:project, :zone, :name],
-      'google_compute_backend_bucket' => [:project, :name],
-      'google_compute_backend_service' => [:project, :name],
-      'google_compute_disk' => [:project, :name, :zone],
-      'google_compute_firewall' => [:project, :name],
-      'google_compute_forwarding_rule' => [:project, :region, :name],
-      'google_compute_global_address' => [:project, :name],
-      'google_compute_global_forwarding_rule' => [:project, :name],
-      'google_compute_health_check' => [:project, :name],
-      'google_compute_http_health_check' => [:project, :name],
-      'google_compute_https_health_check' => [:project, :name],
-      'google_compute_image' => [:project, :name],
-      'google_compute_instance' => [:project, :zone, :name],
-      'google_compute_instance_group' => [:project, :zone, :name],
-      'google_compute_instance_group_manager' => [:project, :zone, :name],
-      'google_compute_instance_template' => [:project, :name],
-      'google_compute_network' => [:project, :name],
-      'google_compute_project_info' => [:project],
-      'google_compute_region' => [:project, :name],
-      'google_compute_region_backend_service' => [:project, :region, :name],
-      'google_compute_region_instance_group_manager' => [:project, :region, :name],
-      'google_compute_route' => [:project, :name],
-      'google_compute_router' => [:project, :region, :name],
-      'google_compute_snapshot' => [:project, :name],
-      'google_compute_ssl_certificate' => [:project, :name],
-      'google_compute_ssl_policy' => [:project, :name],
-      'google_compute_subnetwork' => [:project, :region, :name],
-      'google_compute_subnetwork_iam_policy' => [:project, :region, :name],
-      'google_compute_target_http_proxy' => [:project, :name],
-      'google_compute_target_https_proxy' => [:project, :name],
-      'google_compute_target_pool' => [:project, :region, :name],
-      'google_compute_target_tcp_proxy' => [:project, :name],
-      'google_compute_url_map' => [:project, :name],
-      'google_compute_vpn_tunnel' => [:project, :region, :name],
-      'google_compute_zone' => [:project, :zone],
-      'google_container_cluster' => [:project, :zone, :name],
-      'google_container_node_pool' => [:project, :zone, :cluster_name, :nodepool_name],
-      'google_container_regional_cluster' => [:project, :location, :name],
-      'google_container_regional_node_pool' => [:project, :location, :cluster, :name],
-      'google_dns_managed_zone' => [:project, :zone],
-      'google_dns_resource_record_set' => [:project, :name, :type, :managed_zone],
-      'google_kms_crypto_key' => [:project, :location, :key_ring_name, :name],
-      'google_kms_crypto_key_iam_binding' => [:crypto_key_url, :role],
-      'google_kms_key_ring' => [:project, :location, :name],
-      'google_kms_key_ring_iam_binding' => [:key_ring_url, :role],
-      'google_logging_project_exclusion' => [:project, :exclusion],
-      'google_logging_project_sink' => [:project, :sink],
-      'google_organization' => [:display_name],
-      'google_organization_policy' => [:name, :constraints],
-      'google_project' => [:project],
-      'google_project_alert_policy' => [:policy],
-      'google_project_alert_policy_condition' => [:name, :filter],
-      'google_project_iam_binding' => [:project, :role],
-      'google_project_iam_custom_role' => [:project, :name],
-      'google_project_logging_audit_config' => [:project],
-      'google_project_metric' => [:project, :metric],
-      'google_pubsub_subscription' => [:project, :name],
-      'google_pubsub_subscription_iam_policy' => [:project, :name],
-      'google_pubsub_topic' => [:project, :name],
-      'google_pubsub_topic_iam_policy' => [:project, :name],
-      'google_resourcemanager_organization_policy' => [:organization_name, :constraint],
-      'google_service_account' => [:name],
-      'google_service_account_key' => [:name],
-      'google_sourcerepo_repository' => [:project, :name],
-      'google_sql_database_instance' => [:project, :database],
-      'google_storage_bucket' => [:name],
-      'google_storage_bucket_acl' => [:bucket, :entity],
-      'google_storage_bucket_iam_binding' => [:bucket, :role],
-      'google_storage_bucket_object' => [:bucket, :object],
-      'google_storage_default_object_acl' => [:bucket, :entity],
-      'google_storage_object_acl' => [:bucket, :object, :entity],
-      'google_user' => [:user_key]
+      "google_bigquery_dataset" => %i{project name},
+      "google_bigquery_table" => %i{project dataset name},
+      "google_cloudfunctions_cloud_function" => %i{project location name},
+      "google_compute_address" => %i{project location name},
+      "google_compute_autoscaler" => %i{project zone name},
+      "google_compute_backend_bucket" => %i{project name},
+      "google_compute_backend_service" => %i{project name},
+      "google_compute_disk" => %i{project name zone},
+      "google_compute_firewall" => %i{project name},
+      "google_compute_forwarding_rule" => %i{project region name},
+      "google_compute_global_address" => %i{project name},
+      "google_compute_global_forwarding_rule" => %i{project name},
+      "google_compute_health_check" => %i{project name},
+      "google_compute_http_health_check" => %i{project name},
+      "google_compute_https_health_check" => %i{project name},
+      "google_compute_image" => %i{project name},
+      "google_compute_instance" => %i{project zone name},
+      "google_compute_instance_group" => %i{project zone name},
+      "google_compute_instance_group_manager" => %i{project zone name},
+      "google_compute_instance_template" => %i{project name},
+      "google_compute_network" => %i{project name},
+      "google_compute_project_info" => [:project],
+      "google_compute_region" => %i{project name},
+      "google_compute_region_backend_service" => %i{project region name},
+      "google_compute_region_instance_group_manager" => %i{project region name},
+      "google_compute_route" => %i{project name},
+      "google_compute_router" => %i{project region name},
+      "google_compute_snapshot" => %i{project name},
+      "google_compute_ssl_certificate" => %i{project name},
+      "google_compute_ssl_policy" => %i{project name},
+      "google_compute_subnetwork" => %i{project region name},
+      "google_compute_subnetwork_iam_policy" => %i{project region name},
+      "google_compute_target_http_proxy" => %i{project name},
+      "google_compute_target_https_proxy" => %i{project name},
+      "google_compute_target_pool" => %i{project region name},
+      "google_compute_target_tcp_proxy" => %i{project name},
+      "google_compute_url_map" => %i{project name},
+      "google_compute_vpn_tunnel" => %i{project region name},
+      "google_compute_zone" => %i{project zone},
+      "google_container_cluster" => %i{project zone name},
+      "google_container_node_pool" => %i{project zone cluster_name nodepool_name},
+      "google_container_regional_cluster" => %i{project location name},
+      "google_container_regional_node_pool" => %i{project location cluster name},
+      "google_dns_managed_zone" => %i{project zone},
+      "google_dns_resource_record_set" => %i{project name type managed_zone},
+      "google_kms_crypto_key" => %i{project location key_ring_name name},
+      "google_kms_crypto_key_iam_binding" => %i{crypto_key_url role},
+      "google_kms_key_ring" => %i{project location name},
+      "google_kms_key_ring_iam_binding" => %i{key_ring_url role},
+      "google_logging_project_exclusion" => %i{project exclusion},
+      "google_logging_project_sink" => %i{project sink},
+      "google_organization" => [:display_name],
+      "google_organization_policy" => %i{name constraints},
+      "google_project" => [:project],
+      "google_project_alert_policy" => [:policy],
+      "google_project_alert_policy_condition" => %i{name filter},
+      "google_project_iam_binding" => %i{project role},
+      "google_project_iam_custom_role" => %i{project name},
+      "google_project_logging_audit_config" => [:project],
+      "google_project_metric" => %i{project metric},
+      "google_pubsub_subscription" => %i{project name},
+      "google_pubsub_subscription_iam_policy" => %i{project name},
+      "google_pubsub_topic" => %i{project name},
+      "google_pubsub_topic_iam_policy" => %i{project name},
+      "google_resourcemanager_organization_policy" => %i{organization_name constraint},
+      "google_service_account" => [:name],
+      "google_service_account_key" => [:name],
+      "google_sourcerepo_repository" => %i{project name},
+      "google_sql_database_instance" => %i{project database},
+      "google_storage_bucket" => [:name],
+      "google_storage_bucket_acl" => %i{bucket entity},
+      "google_storage_bucket_iam_binding" => %i{bucket role},
+      "google_storage_bucket_object" => %i{bucket object},
+      "google_storage_default_object_acl" => %i{bucket entity},
+      "google_storage_object_acl" => %i{bucket object entity},
+      "google_user" => [:user_key],
     }.freeze
 
     # the iterators for the various resource types
@@ -99,68 +99,69 @@ module InspecPlugins::Iggy::Platforms
       # 'google_organization' => { 'iterator' => 'google_organizations', 'index' => 'names', 'qualifiers' => [] }, # organizations are not managed by Terraform
       # 'google_project' => { 'iterator' => 'google_projects', 'index' => 'project_names', 'qualifiers' => [] }, # projects are not managed by Terraform
       # 'google_project_iam_binding' => { 'iterator' => 'google_project_iam_bindings', 'index' => 'iam_binding_roles', 'qualifiers' => [:project] },
-      'google_bigquery_dataset' => { 'iterator' => 'google_bigquery_datasets', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_bigquery_table' => { 'iterator' => 'google_bigquery_tables', 'index' => 'table_references', 'qualifiers' => [:project, :dataset] },
-      'google_cloudbuild_trigger' => { 'iterator' => 'google_cloudbuild_triggers', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_cloudfunctions_cloud_function' => { 'iterator' => 'google_cloudfunctions_cloud_functions', 'index' => 'names', 'qualifiers' => [:project, :location] },
-      'google_compute_autoscaler' => { 'iterator' => 'google_compute_autoscalers', 'index' => 'names', 'qualifiers' => [:project, :zone] },
-      'google_compute_backend_bucket' => { 'iterator' => 'google_compute_backend_buckets', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_backend_service' => { 'iterator' => 'google_compute_backend_services', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_firewall' => { 'iterator' => 'google_compute_firewalls', 'index' => 'firewall_names', 'qualifiers' => [:project] },
-      'google_compute_forwarding_rule' => { 'iterator' => 'google_compute_forwarding_rules', 'index' => 'forwarding_rule_names', 'qualifiers' => [:project, :region] },
-      'google_compute_health_check' => { 'iterator' => 'google_compute_health_checks', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_http_health_check' => { 'iterator' => 'google_compute_http_health_checks', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_https_health_check' => { 'iterator' => 'google_compute_https_health_checks', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_instance' => { 'iterator' => 'google_compute_instances', 'index' => 'instance_names', 'qualifiers' => [:project, :zone] },
-      'google_compute_instance_group' => { 'iterator' => 'google_compute_instance_groups', 'index' => 'instance_group_names', 'qualifiers' => [:project, :zone] },
-      'google_compute_instance_group_manager' => { 'iterator' => 'google_compute_instance_group_managers', 'index' => 'base_instance_names', 'qualifiers' => [:project, :zone] },
-      'google_compute_instance_template' => { 'iterator' => 'google_compute_instance_templates', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_router' => { 'iterator' => 'google_compute_routers', 'index' => 'names', 'qualifiers' => [:project, :region] },
-      'google_compute_snapshot' => { 'iterator' => 'google_compute_snapshots', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_ssl_certificate' => { 'iterator' => 'google_compute_ssl_certificates', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_ssl_policy' => { 'iterator' => 'google_compute_ssl_policies', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_target_http_proxy' => { 'iterator' => 'google_compute_target_http_proxies', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_target_https_proxy' => { 'iterator' => 'google_compute_target_https_proxies', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_target_pool' => { 'iterator' => 'google_compute_target_pools', 'index' => 'names', 'qualifiers' => [:project, :region] },
-      'google_compute_target_tcp_proxy' => { 'iterator' => 'google_compute_target_tcp_proxies', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_url_map' => { 'iterator' => 'google_compute_url_maps', 'index' => 'names', 'qualifiers' => [:project] },
-      'google_compute_vpn_tunnel' => { 'iterator' => 'google_compute_vpn_tunnels', 'index' => 'vpn_tunnel_names', 'qualifiers' => [:project, :region] },
-      'google_container_cluster' => { 'iterator' => 'google_container_clusters', 'index' => 'cluster_names', 'qualifiers' => [:project, :zone] },
-      'google_container_node_pool' => { 'iterator' => 'google_container_node_pools', 'index' => 'node_pool_names', 'qualifiers' => [:project, :zone, :cluster_name] },
-      'google_container_regional_cluster' => { 'iterator' => 'google_container_regional_clusters', 'index' => 'names', 'qualifiers' => [:project, :location] },
-      'google_dns_managed_zone' => { 'iterator' => 'google_dns_managed_zones', 'index' => 'zone_names', 'qualifiers' => [:project] },
-      'google_dns_resource_record_set' => { 'iterator' => 'google_dns_resource_record_sets', 'index' => 'names', 'qualifiers' => [:project, :managed_zone] },
-      'google_kms_crypto_key' => { 'iterator' => 'google_kms_crypto_keys', 'index' => 'crypto_key_names', 'qualifiers' => [:project, :location, :key_ring_name] },
-      'google_logging_project_sink' => { 'iterator' => 'google_logging_project_sinks', 'index' => 'sink_names', 'qualifiers' => [:project] },
-      'google_project_alert_policy' => { 'iterator' => 'google_project_alert_policies', 'index' => 'policy_names', 'qualifiers' => [:project] },
-      'google_project_metric' => { 'iterator' => 'google_project_metrics', 'index' => 'metric_names', 'qualifiers' => [:project] },
-      'google_pubsub_subscription' => { 'iterator' => 'google_pubsub_subscriptions', 'index' => 'names', 'qualifiers' => [:project] },
+      "google_bigquery_dataset" => { "iterator" => "google_bigquery_datasets", "index" => "names", "qualifiers" => [:project] },
+      "google_bigquery_table" => { "iterator" => "google_bigquery_tables", "index" => "table_references", "qualifiers" => %i{project dataset} },
+      "google_cloudbuild_trigger" => { "iterator" => "google_cloudbuild_triggers", "index" => "names", "qualifiers" => [:project] },
+      "google_cloudfunctions_cloud_function" => { "iterator" => "google_cloudfunctions_cloud_functions", "index" => "names", "qualifiers" => %i{project location} },
+      "google_compute_autoscaler" => { "iterator" => "google_compute_autoscalers", "index" => "names", "qualifiers" => %i{project zone} },
+      "google_compute_backend_bucket" => { "iterator" => "google_compute_backend_buckets", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_backend_service" => { "iterator" => "google_compute_backend_services", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_firewall" => { "iterator" => "google_compute_firewalls", "index" => "firewall_names", "qualifiers" => [:project] },
+      "google_compute_forwarding_rule" => { "iterator" => "google_compute_forwarding_rules", "index" => "forwarding_rule_names", "qualifiers" => %i{project region} },
+      "google_compute_health_check" => { "iterator" => "google_compute_health_checks", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_http_health_check" => { "iterator" => "google_compute_http_health_checks", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_https_health_check" => { "iterator" => "google_compute_https_health_checks", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_instance" => { "iterator" => "google_compute_instances", "index" => "instance_names", "qualifiers" => %i{project zone} },
+      "google_compute_instance_group" => { "iterator" => "google_compute_instance_groups", "index" => "instance_group_names", "qualifiers" => %i{project zone} },
+      "google_compute_instance_group_manager" => { "iterator" => "google_compute_instance_group_managers", "index" => "base_instance_names", "qualifiers" => %i{project zone} },
+      "google_compute_instance_template" => { "iterator" => "google_compute_instance_templates", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_router" => { "iterator" => "google_compute_routers", "index" => "names", "qualifiers" => %i{project region} },
+      "google_compute_snapshot" => { "iterator" => "google_compute_snapshots", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_ssl_certificate" => { "iterator" => "google_compute_ssl_certificates", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_ssl_policy" => { "iterator" => "google_compute_ssl_policies", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_target_http_proxy" => { "iterator" => "google_compute_target_http_proxies", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_target_https_proxy" => { "iterator" => "google_compute_target_https_proxies", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_target_pool" => { "iterator" => "google_compute_target_pools", "index" => "names", "qualifiers" => %i{project region} },
+      "google_compute_target_tcp_proxy" => { "iterator" => "google_compute_target_tcp_proxies", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_url_map" => { "iterator" => "google_compute_url_maps", "index" => "names", "qualifiers" => [:project] },
+      "google_compute_vpn_tunnel" => { "iterator" => "google_compute_vpn_tunnels", "index" => "vpn_tunnel_names", "qualifiers" => %i{project region} },
+      "google_container_cluster" => { "iterator" => "google_container_clusters", "index" => "cluster_names", "qualifiers" => %i{project zone} },
+      "google_container_node_pool" => { "iterator" => "google_container_node_pools", "index" => "node_pool_names", "qualifiers" => %i{project zone cluster_name} },
+      "google_container_regional_cluster" => { "iterator" => "google_container_regional_clusters", "index" => "names", "qualifiers" => %i{project location} },
+      "google_dns_managed_zone" => { "iterator" => "google_dns_managed_zones", "index" => "zone_names", "qualifiers" => [:project] },
+      "google_dns_resource_record_set" => { "iterator" => "google_dns_resource_record_sets", "index" => "names", "qualifiers" => %i{project managed_zone} },
+      "google_kms_crypto_key" => { "iterator" => "google_kms_crypto_keys", "index" => "crypto_key_names", "qualifiers" => %i{project location key_ring_name} },
+      "google_logging_project_sink" => { "iterator" => "google_logging_project_sinks", "index" => "sink_names", "qualifiers" => [:project] },
+      "google_project_alert_policy" => { "iterator" => "google_project_alert_policies", "index" => "policy_names", "qualifiers" => [:project] },
+      "google_project_metric" => { "iterator" => "google_project_metrics", "index" => "metric_names", "qualifiers" => [:project] },
+      "google_pubsub_subscription" => { "iterator" => "google_pubsub_subscriptions", "index" => "names", "qualifiers" => [:project] },
     }.freeze
 
     GCP_REMOVED_PROPERTIES = {
-      'google_compute_http_health_check' => [:self_link, :id, :creation_timestamp], # id: terraform has name not id, self_link: undocumented but broken, creation_timestamp api incompatibility
-      'google_compute_instance' => [:label_fingerprint, :machine_type, :min_cpu_platform, :zone], # label_fingerprint, machine_type, zone api incompatibility | min_cpu_platform undefined
-      'google_compute_instance_group' => [:zone], # zone api incompatibility issue
-      'google_compute_forwarding_rule' => [:backend_service, :ip_version, :network, :region, :subnetwork], # :backend_service, :ip_version, :network, :region, :subnetwork api incompatibility
-      'google_compute_target_pool' => [:backup_pool, :failover_ratio, :id, :region, :self_link], # api incompatibility
+      "google_compute_http_health_check" => %i{self_link id creation_timestamp}, # id: terraform has name not id, self_link: undocumented but broken, creation_timestamp api incompatibility
+      "google_compute_instance" => %i{label_fingerprint machine_type min_cpu_platform zone}, # label_fingerprint, machine_type, zone api incompatibility | min_cpu_platform undefined
+      "google_compute_instance_group" => [:zone], # zone api incompatibility issue
+      "google_compute_forwarding_rule" => %i{backend_service ip_version network region subnetwork}, # :backend_service, :ip_version, :network, :region, :subnetwork api incompatibility
+      "google_compute_target_pool" => %i{backup_pool failover_ratio id region self_link}, # api incompatibility
+    }.freeze
 
+    GCP_TRANSLATED_RESOURCE_PROPERTIES = {
     }.freeze
 
     # readme content
-    def self.readme
-    end
+    def self.readme; end
 
     # inspec.yml boilerplate content from
     # inspec/lib/plugins/inspec-init/templates/profiles/gcp/inspec.yml
     def self.inspec_yml
       yml = {}
-      yml['inspec_version'] = '>= 2.3.5'
-      yml['depends'] = [{
-        'name' => 'inspec-gcp',
-        'url' => 'https://github.com/inspec/inspec-gcp/archive/master.tar.gz'
+      yml["inspec_version"] = ">= 2.3.5"
+      yml["depends"] = [{
+        "name" => "inspec-gcp",
+        "url" => "https://github.com/inspec/inspec-gcp/archive/master.tar.gz",
       }]
-      yml['supports'] = [{
-        'platform' => 'gcp'
+      yml["supports"] = [{
+        "platform" => "gcp",
       }]
       yml
     end

data/lib/inspec-iggy/plugin.rb

@@ -1,4 +1,4 @@
-require 'inspec/plugin/v2'
+require "inspec/plugin/v2"
 
 # The InspecPlugins namespace is where all plugins should declare themselves.
 # The 'Inspec' capitalization is used throughout the InSpec source code; yes, it's
@@ -14,7 +14,7 @@ module InspecPlugins
         # should be ready to do so. So, load the file that defines the functionality.
         # For example, InSpec will activate this hook when `inspec help` is
         # executed, so that this plugin's usage message will be included in the help.
-        require 'inspec-iggy/terraform/cli_command'
+        require "inspec-iggy/terraform/cli_command"
 
         # Having loaded our functionality, return a class that will let the
         # CLI engine tap into it.
@@ -22,9 +22,15 @@ module InspecPlugins
       end
 
       cli_command :cloudformation do
-        require 'inspec-iggy/cloudformation/cli_command'
+        require "inspec-iggy/cloudformation/cli_command"
         InspecPlugins::Iggy::CloudFormation::CliCommand
       end
+
+      cli_command :iggy do
+        require "inspec-iggy/iggy_cli_command"
+        InspecPlugins::Iggy::CliCommand
+      end
+
     end
   end
 end

data/lib/inspec-iggy/profile_helper.rb

@@ -1,11 +1,11 @@
 # -*- coding: utf-8 -*-
 # renders the profile from the parsed files
 
-require 'yaml'
+require "yaml"
 
-require 'inspec-iggy/platforms/aws_helper'
-require 'inspec-iggy/platforms/azure_helper'
-require 'inspec-iggy/platforms/gcp_helper'
+require "inspec-iggy/platforms/aws_helper"
+require "inspec-iggy/platforms/azure_helper"
+require "inspec-iggy/platforms/gcp_helper"
 
 module InspecPlugins
   module Iggy
@@ -17,7 +17,7 @@ module InspecPlugins
         overwrite_mode = options[:overwrite]
 
         #  --------------------------- InSpec Code Generator ---------------------------
-        cli.headline('InSpec Iggy Code Generator')
+        cli.headline("InSpec Iggy Code Generator")
 
         full_destination_path = Pathname.new(Dir.pwd).join(name)
 
@@ -34,7 +34,7 @@ module InspecPlugins
         # * Creating file README.md
         render_readme_md(cli, name, source_file, platform)
         # * Creating directory controls
-        cli.list_item "Creating directory #{cli.emphasis('controls')}"
+        cli.list_item "Creating directory #{cli.emphasis("controls")}"
         FileUtils.mkdir_p("#{name}/controls")
         # * Creating file controls/generated.rb
         render_controls_rb(cli, name, controls)
@@ -44,44 +44,44 @@ module InspecPlugins
       end
 
       def self.render_readme_md(cli, name, source_file, platform)
-        cli.list_item "Creating file #{cli.emphasis('README.md')}"
-        f = File.new("#{name}/README.md", 'w')
+        cli.list_item "Creating file #{cli.emphasis("README.md")}"
+        f = File.new("#{name}/README.md", "w")
         f.puts("# #{name}")
         f.puts
         f.puts("This profile was generated by InSpec-Iggy v#{Iggy::VERSION} from the #{source_file} source file.")
 
-        f.puts(InspecPlugins::Iggy::Platforms::AwsHelper.readme) if platform.eql?('aws')
-        f.puts(InspecPlugins::Iggy::Platforms::AzureHelper.readme) if platform.eql?('azure')
-        f.puts(InspecPlugins::Iggy::Platforms::GcpHelper.readme) if platform.eql?('gcp')
+        f.puts(InspecPlugins::Iggy::Platforms::AwsHelper.readme) if platform.eql?("aws")
+        f.puts(InspecPlugins::Iggy::Platforms::AzureHelper.readme) if platform.eql?("azure")
+        f.puts(InspecPlugins::Iggy::Platforms::GcpHelper.readme) if platform.eql?("gcp")
 
         f.close
       end
 
       def self.render_inspec_yml(cli, name, source_file, options, platform)
-        cli.list_item "Creating file #{cli.emphasis('inspec.yml')}"
+        cli.list_item "Creating file #{cli.emphasis("inspec.yml")}"
         yml = {}
-        yml['name'] = name
-        yml['title'] = options[:title]
-        yml['maintainer'] = options[:maintainer]
-        yml['copyright'] = options[:copyright]
-        yml['copyright_email'] = options[:email]
-        yml['license'] = options[:license]
-        yml['summary'] = options[:summary]
-        yml['version'] = options[:version]
-        yml['description'] = "Generated by InSpec-Iggy v#{Iggy::VERSION} from the #{source_file} source file."
+        yml["name"] = name
+        yml["title"] = options[:title]
+        yml["maintainer"] = options[:maintainer]
+        yml["copyright"] = options[:copyright]
+        yml["copyright_email"] = options[:email]
+        yml["license"] = options[:license]
+        yml["summary"] = options[:summary]
+        yml["version"] = options[:version]
+        yml["description"] = "Generated by InSpec-Iggy v#{Iggy::VERSION} from the #{source_file} source file."
 
-        yml.merge!(InspecPlugins::Iggy::Platforms::AwsHelper.inspec_yml) if platform.eql?('aws')
-        yml.merge!(InspecPlugins::Iggy::Platforms::AzureHelper.inspec_yml) if platform.eql?('azure')
-        yml.merge!(InspecPlugins::Iggy::Platforms::GcpHelper.inspec_yml) if platform.eql?('gcp')
+        yml.merge!(InspecPlugins::Iggy::Platforms::AwsHelper.inspec_yml) if platform.eql?("aws")
+        yml.merge!(InspecPlugins::Iggy::Platforms::AzureHelper.inspec_yml) if platform.eql?("azure")
+        yml.merge!(InspecPlugins::Iggy::Platforms::GcpHelper.inspec_yml) if platform.eql?("gcp")
 
-        f = File.new("#{name}/inspec.yml", 'w')
+        f = File.new("#{name}/inspec.yml", "w")
         f.write(yml.to_yaml)
         f.close
       end
 
       def self.render_controls_rb(cli, name, controls)
-        cli.list_item "Creating file #{cli.emphasis('controls/generated.rb')}"
-        f = File.new("#{name}/controls/generated.rb", 'w')
+        cli.list_item "Creating file #{cli.emphasis("controls/generated.rb")}"
+        f = File.new("#{name}/controls/generated.rb", "w")
         f.write(controls)
         f.close
       end