RubyGems - inspec - Versions diffs - 0.32.0 → 0.33.0 - Mend

inspec 0.32.0 → 0.33.0

Files changed (32) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +46 -2
data/Gemfile +2 -1
data/README.md +1 -1
data/docs/dsl_inspec.rst +21 -0
data/docs/resources.rst +3 -3
data/docs/ruby_usage.rst +1 -1
data/inspec.gemspec +1 -1
data/lib/bundles/inspec-compliance/http.rb +2 -0
data/lib/inspec/base_cli.rb +1 -1
data/lib/inspec/control_eval_context.rb +145 -0
data/lib/inspec/dependencies/dependency_set.rb +21 -6
data/lib/inspec/dependencies/requirement.rb +13 -6
data/lib/inspec/dependencies/resolver.rb +2 -2
data/lib/inspec/dsl.rb +3 -32
data/lib/inspec/dsl_shared.rb +25 -0
data/lib/inspec/library_eval_context.rb +47 -0
data/lib/inspec/plugins/resource.rb +63 -63
data/lib/inspec/profile.rb +61 -31
data/lib/inspec/profile_context.rb +48 -140
data/lib/inspec/resource.rb +13 -7
data/lib/inspec/rspec_json_formatter.rb +37 -6
data/lib/inspec/rule.rb +4 -0
data/lib/inspec/runner.rb +86 -86
data/lib/inspec/version.rb +1 -1
data/lib/matchers/matchers.rb +1 -1
data/lib/resources/apache_conf.rb +1 -1
data/lib/resources/mysql.rb +1 -1
data/lib/resources/powershell.rb +3 -7
data/lib/resources/service.rb +3 -3
data/lib/resources/vbscript.rb +17 -1
metadata +7 -4

data/lib/inspec/version.rb CHANGED Viewed

@@ -4,5 +4,5 @@
 # author: Christoph Hartmann
 module Inspec
-  VERSION = '0.32.0'.freeze
+  VERSION = '0.33.0'.freeze
 end

data/lib/matchers/matchers.rb CHANGED Viewed

@@ -232,7 +232,7 @@ end
 RSpec::Matchers.define :cmp do |first_expected|
   def integer?(value)
-    !(value =~ /\A[1-9]\d*\Z/).nil?
+    !(value =~ /\A0+\Z|\A[1-9]\d*\Z/).nil?
   end
   def float?(value)

data/lib/resources/apache_conf.rb CHANGED Viewed

@@ -21,7 +21,7 @@ module Inspec::Resources
     def initialize(conf_path = nil)
       @conf_path = conf_path || inspec.apache.conf_path
-      @conf_dir = File.dirname(@conf_path)
+      @conf_dir = conf_path ? File.dirname(@conf_path) : inspec.apache.conf_dir
       @files_contents = {}
       @content = nil
       @params = nil

data/lib/resources/mysql.rb CHANGED Viewed

@@ -33,7 +33,7 @@ module Inspec::Resources
       @log_dir = '/var/log/'
       @log_path = '/var/log/mysql.log'
       @log_group = 'adm'
-      case os[:release]
+      case inspec.os[:release]
       when '14.04'
         @log_dir_group = 'syslog'
       else

data/lib/resources/powershell.rb CHANGED Viewed

@@ -22,13 +22,9 @@ module Inspec::Resources
       unless inspec.os.windows?
         return skip_resource 'The `script` resource is not supported on your OS yet.'
       end
-      # encodes a script as base64 to run as powershell encodedCommand
-      # this comes with performance issues: @see https://gist.github.com/fnichol/7b20596b950e65fb96f9
-      require 'winrm'
-      script = WinRM::PowershellScript.new(script)
-      cmd = "powershell -encodedCommand #{script.encoded}"
-      super(cmd)
+      # since WinRM 2.0 and the default use of powershell for local execution in
+      # train, we do not need to wrap the script here anymore
+      super(script)
     end
     # we cannot determine if a command exists, because that does not work for scripts

data/lib/resources/service.rb CHANGED Viewed

@@ -407,9 +407,9 @@ module Inspec::Resources
       # read all enabled services from runlevel
       # on rhel via: 'chkconfig --list', is not installed by default
       # bash: for i in `find /etc/rc*.d -name S*`; do basename $i | sed -r 's/^S[0-9]+//'; done | sort | uniq
-      enabled_services_cmd = inspec.command('find /etc/rc*.d -name S*')
+      enabled_services_cmd = inspec.command('find /etc/rc*.d /etc/init.d/rc*.d -name S*').stdout
       service_line = %r{rc(?<runlevel>[0-6])\.d/S[^/]*?#{Regexp.escape service_name}$}
-      all_services = enabled_services_cmd.stdout.split("\n").map { |line|
+      all_services = enabled_services_cmd.split("\n").map { |line|
         service_line.match(line)
       }.compact
       enabled = !all_services.empty?
@@ -575,7 +575,7 @@ module Inspec::Resources
     # - 6: Pause Pending
     # - 7: Paused
     def info(service_name)
-      cmd = inspec.command("New-Object -Type PSObject | Add-Member -MemberType NoteProperty -Name Service -Value (Get-Service -Name #{service_name}| Select-Object -Property Name, DisplayName, Status) -PassThru | Add-Member -MemberType NoteProperty -Name WMI -Value (Get-WmiObject -Class Win32_Service | Where-Object {$_.Name -eq '#{service_name}' -or $_.DisplayName -eq '#{service_name}'} | Select-Object -Property StartMode) -PassThru | ConvertTo-Json")
+      cmd = inspec.command("New-Object -Type PSObject | Add-Member -MemberType NoteProperty -Name Service -Value (Get-Service -Name '#{service_name}'| Select-Object -Property Name, DisplayName, Status) -PassThru | Add-Member -MemberType NoteProperty -Name WMI -Value (Get-WmiObject -Class Win32_Service | Where-Object {$_.Name -eq '#{service_name}' -or $_.DisplayName -eq '#{service_name}'} | Select-Object -Property StartMode) -PassThru | ConvertTo-Json")
       # cannot rely on exit code for now, successful command returns exit code 1
       # return nil if cmd.exit_status != 0

data/lib/resources/vbscript.rb CHANGED Viewed

@@ -2,6 +2,8 @@
 # author: Christoph Hartmann
 # author: Dominik Richter
+require 'securerandom'
 module Inspec::Resources
   # This resource allows users to run vbscript on windows machines. We decided
   # not to use scriptcontrol, due to the fact that it works on 32 bit systems only:
@@ -34,10 +36,11 @@ module Inspec::Resources
     def initialize(vbscript)
       return skip_resource 'The `vbscript` resource is not supported on your OS yet.' unless inspec.os.windows?
+      @seperator = SecureRandom.uuid
       cmd = <<-EOH
 $vbscript = @"
 #{vbscript}
+Wscript.Stdout.Write "#{@seperator}"
 "@
 $filename = [System.IO.Path]::GetTempFileName() + ".vbs"
 New-Item $filename -type file -force -value $vbscript | Out-Null
@@ -47,8 +50,21 @@ EOH
       super(cmd)
     end
+    def result
+      @result ||= parse_stdout
+    end
     def to_s
       'Windows VBScript'
     end
+    private
+    def parse_stdout
+      res = inspec.backend.run_command(@command)
+      parsed_result = res.stdout.gsub(/#{@seperator}\r\n$/, '')
+      res.stdout = parsed_result
+      res
+    end
   end
 end

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: inspec
 version: !ruby/object:Gem::Version
-  version: 0.32.0
+  version: 0.33.0
 platform: ruby
 authors:
 - Dominik Richter
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-08-26 00:00:00.000000000 Z
+date: 2016-09-05 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: train
@@ -16,7 +16,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.16.0
+        version: 0.19.0
     - - "<"
       - !ruby/object:Gem::Version
         version: '1.0'
@@ -26,7 +26,7 @@ dependencies:
     requirements:
     - - ">="
       - !ruby/object:Gem::Version
-        version: 0.16.0
+        version: 0.19.0
     - - "<"
       - !ruby/object:Gem::Version
         version: '1.0'
@@ -296,6 +296,7 @@ files:
 - lib/inspec/cli.rb
 - lib/inspec/completions/bash.sh.erb
 - lib/inspec/completions/zsh.sh.erb
+- lib/inspec/control_eval_context.rb
 - lib/inspec/dependencies/dependency_set.rb
 - lib/inspec/dependencies/lockfile.rb
 - lib/inspec/dependencies/requirement.rb
@@ -303,10 +304,12 @@ files:
 - lib/inspec/dependencies/vendor_index.rb
 - lib/inspec/describe.rb
 - lib/inspec/dsl.rb
+- lib/inspec/dsl_shared.rb
 - lib/inspec/env_printer.rb
 - lib/inspec/errors.rb
 - lib/inspec/expect.rb
 - lib/inspec/fetcher.rb
+- lib/inspec/library_eval_context.rb
 - lib/inspec/log.rb
 - lib/inspec/metadata.rb
 - lib/inspec/objects.rb