RubyGems - inspec - Versions diffs - 0.9.0 - Mend

inspec 0.9.0

Files changed (247) hide show

checksums.yaml +7 -0
data/.gitignore +8 -0
data/.rubocop.yml +65 -0
data/.travis.yml +23 -0
data/CHANGELOG.md +38 -0
data/Gemfile +33 -0
data/LICENSE +201 -0
data/MAINTAINERS.md +28 -0
data/MAINTAINERS.toml +42 -0
data/README.md +257 -0
data/Rakefile +47 -0
data/bin/inspec +109 -0
data/docs/ctl_inspec.rst +195 -0
data/docs/dsl_inspec.rst +182 -0
data/docs/readme.rst +100 -0
data/docs/resources.rst +4319 -0
data/docs/template.rst +51 -0
data/examples/test-kitchen/.kitchen.yml +20 -0
data/examples/test-kitchen/Berksfile +3 -0
data/examples/test-kitchen/Gemfile +21 -0
data/examples/test-kitchen/README.md +27 -0
data/examples/test-kitchen/metadata.rb +7 -0
data/examples/test-kitchen/recipes/default.rb +6 -0
data/examples/test-kitchen/recipes/nginx.rb +30 -0
data/examples/test-kitchen/test/integration/default/web_spec.rb +28 -0
data/inspec.gemspec +30 -0
data/lib/inspec.rb +20 -0
data/lib/inspec/backend.rb +42 -0
data/lib/inspec/dsl.rb +151 -0
data/lib/inspec/log.rb +34 -0
data/lib/inspec/metadata.rb +79 -0
data/lib/inspec/plugins.rb +9 -0
data/lib/inspec/plugins/resource.rb +62 -0
data/lib/inspec/profile.rb +138 -0
data/lib/inspec/profile_context.rb +170 -0
data/lib/inspec/resource.rb +76 -0
data/lib/inspec/rspec_json_formatter.rb +27 -0
data/lib/inspec/rule.rb +170 -0
data/lib/inspec/runner.rb +154 -0
data/lib/inspec/shell.rb +66 -0
data/lib/inspec/targets.rb +9 -0
data/lib/inspec/targets/core.rb +27 -0
data/lib/inspec/targets/dir.rb +67 -0
data/lib/inspec/targets/file.rb +29 -0
data/lib/inspec/targets/folder.rb +43 -0
data/lib/inspec/targets/tar.rb +34 -0
data/lib/inspec/targets/url.rb +39 -0
data/lib/inspec/targets/zip.rb +47 -0
data/lib/inspec/version.rb +7 -0
data/lib/matchers/matchers.rb +221 -0
data/lib/resources/apache.rb +29 -0
data/lib/resources/apache_conf.rb +113 -0
data/lib/resources/apt.rb +140 -0
data/lib/resources/audit_policy.rb +63 -0
data/lib/resources/auditd_conf.rb +56 -0
data/lib/resources/auditd_rules.rb +53 -0
data/lib/resources/bond.rb +65 -0
data/lib/resources/bridge.rb +114 -0
data/lib/resources/command.rb +57 -0
data/lib/resources/csv.rb +32 -0
data/lib/resources/directory.rb +15 -0
data/lib/resources/etc_group.rb +150 -0
data/lib/resources/file.rb +110 -0
data/lib/resources/gem.rb +46 -0
data/lib/resources/group.rb +132 -0
data/lib/resources/host.rb +143 -0
data/lib/resources/inetd_conf.rb +56 -0
data/lib/resources/interface.rb +127 -0
data/lib/resources/iptables.rb +65 -0
data/lib/resources/json.rb +64 -0
data/lib/resources/kernel_module.rb +40 -0
data/lib/resources/kernel_parameter.rb +55 -0
data/lib/resources/limits_conf.rb +55 -0
data/lib/resources/login_def.rb +60 -0
data/lib/resources/mysql.rb +81 -0
data/lib/resources/mysql_conf.rb +116 -0
data/lib/resources/mysql_session.rb +52 -0
data/lib/resources/npm.rb +44 -0
data/lib/resources/ntp_conf.rb +58 -0
data/lib/resources/oneget.rb +63 -0
data/lib/resources/os.rb +22 -0
data/lib/resources/os_env.rb +34 -0
data/lib/resources/package.rb +169 -0
data/lib/resources/parse_config.rb +75 -0
data/lib/resources/passwd.rb +93 -0
data/lib/resources/pip.rb +75 -0
data/lib/resources/port.rb +296 -0
data/lib/resources/postgres.rb +37 -0
data/lib/resources/postgres_conf.rb +87 -0
data/lib/resources/postgres_session.rb +59 -0
data/lib/resources/processes.rb +57 -0
data/lib/resources/registry_key.rb +54 -0
data/lib/resources/script.rb +34 -0
data/lib/resources/security_policy.rb +73 -0
data/lib/resources/service.rb +379 -0
data/lib/resources/ssh_conf.rb +75 -0
data/lib/resources/user.rb +374 -0
data/lib/resources/windows_feature.rb +77 -0
data/lib/resources/yaml.rb +23 -0
data/lib/resources/yum.rb +154 -0
data/lib/utils/convert.rb +12 -0
data/lib/utils/detect.rb +15 -0
data/lib/utils/find_files.rb +36 -0
data/lib/utils/hash.rb +13 -0
data/lib/utils/modulator.rb +12 -0
data/lib/utils/parser.rb +61 -0
data/lib/utils/simpleconfig.rb +115 -0
data/tasks/maintainers.rb +213 -0
data/test/docker_run.rb +156 -0
data/test/docker_test.rb +51 -0
data/test/helper.rb +200 -0
data/test/integration/.kitchen.yml +42 -0
data/test/integration/Berksfile +4 -0
data/test/integration/cookbooks/os_prepare/metadata.rb +8 -0
data/test/integration/cookbooks/os_prepare/recipes/apt.rb +20 -0
data/test/integration/cookbooks/os_prepare/recipes/default.rb +9 -0
data/test/integration/cookbooks/os_prepare/recipes/file.rb +21 -0
data/test/integration/cookbooks/os_prepare/recipes/package.rb +26 -0
data/test/integration/default/_debug_spec.rb +1 -0
data/test/integration/default/apt_spec.rb +42 -0
data/test/integration/default/file_spec.rb +109 -0
data/test/integration/default/group_spec.rb +32 -0
data/test/integration/default/kernel_module_spec.rb +17 -0
data/test/integration/default/kernel_parameter_spec.rb +56 -0
data/test/integration/default/package_spec.rb +11 -0
data/test/integration/default/service_spec.rb +28 -0
data/test/integration/default/user_spec.rb +44 -0
data/test/resource/command_test.rb +33 -0
data/test/resource/dsl_test.rb +45 -0
data/test/resource/file_test.rb +130 -0
data/test/resource/ssh_config.rb +9 -0
data/test/resource/sshd_config.rb +9 -0
data/test/test-extra.yaml +11 -0
data/test/test.yaml +11 -0
data/test/unit/mock/cmd/Get-NetAdapter +24 -0
data/test/unit/mock/cmd/GetUserAccount +33 -0
data/test/unit/mock/cmd/GetWin32Group +23 -0
data/test/unit/mock/cmd/PATH +1 -0
data/test/unit/mock/cmd/Resolve-DnsName +26 -0
data/test/unit/mock/cmd/Test-NetConnection +4 -0
data/test/unit/mock/cmd/auditctl +7 -0
data/test/unit/mock/cmd/auditpol +2 -0
data/test/unit/mock/cmd/brew-info-jq +1 -0
data/test/unit/mock/cmd/chage-l-root +7 -0
data/test/unit/mock/cmd/dpkg-s-curl +21 -0
data/test/unit/mock/cmd/dscl +5 -0
data/test/unit/mock/cmd/etc-apt +7 -0
data/test/unit/mock/cmd/find-etc-rc-d-name-S +12 -0
data/test/unit/mock/cmd/find-net-interface +9 -0
data/test/unit/mock/cmd/gem-list-local-a-q-rubocop +1 -0
data/test/unit/mock/cmd/get-net-tcpconnection +24 -0
data/test/unit/mock/cmd/get-netadapter-binding-bridge +4 -0
data/test/unit/mock/cmd/get-package-firefox +30 -0
data/test/unit/mock/cmd/get-package-ruby +18 -0
data/test/unit/mock/cmd/get-service-dhcp +10 -0
data/test/unit/mock/cmd/get-windows-feature +7 -0
data/test/unit/mock/cmd/getent-hosts-example.com +1 -0
data/test/unit/mock/cmd/getent-passwd-root +1 -0
data/test/unit/mock/cmd/id-chartmann +1 -0
data/test/unit/mock/cmd/id-root +1 -0
data/test/unit/mock/cmd/initctl-show-config-ssh +3 -0
data/test/unit/mock/cmd/initctl-status-ssh +1 -0
data/test/unit/mock/cmd/iptables-s +6 -0
data/test/unit/mock/cmd/launchctl-list +3 -0
data/test/unit/mock/cmd/ls-1-etc-init.d +2 -0
data/test/unit/mock/cmd/ls-sys-class-net-br +2 -0
data/test/unit/mock/cmd/lsmod +2 -0
data/test/unit/mock/cmd/lsof-np-itcp +4 -0
data/test/unit/mock/cmd/netstat-tulpen +5 -0
data/test/unit/mock/cmd/npm-ls-g--json-bower +9 -0
data/test/unit/mock/cmd/pacman-qi-curl +21 -0
data/test/unit/mock/cmd/ping-example.com +6 -0
data/test/unit/mock/cmd/pip-show-jinja2 +11 -0
data/test/unit/mock/cmd/ps-aux +3 -0
data/test/unit/mock/cmd/pw-usershow-root-7 +1 -0
data/test/unit/mock/cmd/reg_schedule +1 -0
data/test/unit/mock/cmd/rpm-qia-curl +24 -0
data/test/unit/mock/cmd/sbin_sysctl +1 -0
data/test/unit/mock/cmd/secedit-export +7 -0
data/test/unit/mock/cmd/service-e +2 -0
data/test/unit/mock/cmd/service-sendmail-onestatus +3 -0
data/test/unit/mock/cmd/service-sshd-status +1 -0
data/test/unit/mock/cmd/sockstat +5 -0
data/test/unit/mock/cmd/success +0 -0
data/test/unit/mock/cmd/systemctl-show-all-sshd +6 -0
data/test/unit/mock/cmd/win32_product +8 -0
data/test/unit/mock/cmd/yum-repolist-all +52 -0
data/test/unit/mock/files/auditd.conf +4 -0
data/test/unit/mock/files/bond0 +37 -0
data/test/unit/mock/files/etcgroup +3 -0
data/test/unit/mock/files/example.csv +6 -0
data/test/unit/mock/files/inetd.conf +2 -0
data/test/unit/mock/files/kitchen.yml +7 -0
data/test/unit/mock/files/limits.conf +5 -0
data/test/unit/mock/files/login.defs +5 -0
data/test/unit/mock/files/mysql.conf +8 -0
data/test/unit/mock/files/mysql2.conf +2 -0
data/test/unit/mock/files/ntp.conf +5 -0
data/test/unit/mock/files/passwd +2 -0
data/test/unit/mock/files/policyfile.lock.json +12 -0
data/test/unit/mock/files/ssh_config +5 -0
data/test/unit/mock/files/sshd_config +7 -0
data/test/unit/mock/profiles/empty/metadata.rb +0 -0
data/test/unit/mock/profiles/metadata/metadata.rb +1 -0
data/test/unit/profile_context_test.rb +140 -0
data/test/unit/profile_test.rb +49 -0
data/test/unit/resources/apt_test.rb +46 -0
data/test/unit/resources/audit_policy_test.rb +13 -0
data/test/unit/resources/auditd_conf_test.rb +15 -0
data/test/unit/resources/auditd_rules_test.rb +21 -0
data/test/unit/resources/bond_test.rb +24 -0
data/test/unit/resources/bridge_test.rb +56 -0
data/test/unit/resources/csv_test.rb +35 -0
data/test/unit/resources/etc_group_test.rb +37 -0
data/test/unit/resources/gem_test.rb +20 -0
data/test/unit/resources/group_test.rb +96 -0
data/test/unit/resources/host_test.rb +38 -0
data/test/unit/resources/inetd_conf_test.rb +15 -0
data/test/unit/resources/interface_test.rb +54 -0
data/test/unit/resources/iptables_test.rb +30 -0
data/test/unit/resources/json_test.rb +36 -0
data/test/unit/resources/kernel_module_test.rb +23 -0
data/test/unit/resources/kernel_parameter_test.rb +13 -0
data/test/unit/resources/limits_conf_test.rb +14 -0
data/test/unit/resources/login_def_test.rb +16 -0
data/test/unit/resources/mysql_conf_test.rb +14 -0
data/test/unit/resources/npm_test.rb +20 -0
data/test/unit/resources/ntp_conf_test.rb +16 -0
data/test/unit/resources/oneget_test.rb +45 -0
data/test/unit/resources/os_env_test.rb +13 -0
data/test/unit/resources/package_test.rb +51 -0
data/test/unit/resources/passwd_test.rb +24 -0
data/test/unit/resources/pip_test.rb +15 -0
data/test/unit/resources/port_test.rb +46 -0
data/test/unit/resources/processes_test.rb +32 -0
data/test/unit/resources/registry_key_test.rb +19 -0
data/test/unit/resources/script_test.rb +19 -0
data/test/unit/resources/security_policy_test.rb +16 -0
data/test/unit/resources/service_test.rb +116 -0
data/test/unit/resources/ssh_conf_test.rb +33 -0
data/test/unit/resources/user_test.rb +93 -0
data/test/unit/resources/windows_feature.rb +17 -0
data/test/unit/resources/yaml_test.rb +34 -0
data/test/unit/resources/yum_test.rb +68 -0
data/test/unit/simpleconfig_test.rb +80 -0
data/test/unit/utils/content_parser_test.rb +30 -0
metadata +555 -0

data/lib/inspec/resource.rb ADDED Viewed

@@ -0,0 +1,76 @@
+# encoding: utf-8
+# copyright: 2015, Vulcano Security GmbH
+# license: All rights reserved
+# author: Dominik Richter
+# author: Christoph Hartmann
+require 'inspec/plugins'
+module Inspec
+  class Resource
+    def self.registry
+      @registry ||= {}
+    end
+  end
+  def self.resource(version)
+    if version != 1
+      fail 'Only resource version 1 is supported!'
+    end
+    Inspec::Plugins::Resource
+  end
+end
+require 'resources/apache'
+require 'resources/apache_conf'
+require 'resources/apt'
+require 'resources/audit_policy'
+require 'resources/auditd_conf'
+require 'resources/auditd_rules'
+require 'resources/bond'
+require 'resources/bridge'
+require 'resources/command'
+require 'resources/directory'
+require 'resources/etc_group'
+require 'resources/file'
+require 'resources/gem'
+require 'resources/group'
+require 'resources/host'
+require 'resources/inetd_conf'
+require 'resources/interface'
+require 'resources/iptables'
+require 'resources/json'
+require 'resources/kernel_module'
+require 'resources/kernel_parameter'
+require 'resources/limits_conf'
+require 'resources/login_def'
+require 'resources/mysql'
+require 'resources/mysql_conf'
+require 'resources/mysql_session'
+require 'resources/npm'
+require 'resources/ntp_conf'
+require 'resources/oneget'
+require 'resources/os'
+require 'resources/os_env'
+require 'resources/package'
+require 'resources/parse_config'
+require 'resources/passwd'
+require 'resources/pip'
+require 'resources/port'
+require 'resources/postgres'
+require 'resources/postgres_conf'
+require 'resources/postgres_session'
+require 'resources/processes'
+require 'resources/registry_key'
+require 'resources/script'
+require 'resources/security_policy'
+require 'resources/service'
+require 'resources/ssh_conf'
+require 'resources/user'
+require 'resources/windows_feature'
+require 'resources/yum'
+# file formats, depend on json implementation
+require 'resources/json'
+require 'resources/yaml'
+require 'resources/csv'

data/lib/inspec/rspec_json_formatter.rb ADDED Viewed

@@ -0,0 +1,27 @@
+# encoding: utf-8
+# author: Dominik Richter
+# author: Christoph Hartmann
+require 'rspec/core'
+# Extend the basic RSpec JSON Formatter
+# to give us an ID in its output
+# TODO: remove once RSpec has IDs in stable (probably v3.3/v4.0)
+module RSpec::Core::Formatters
+  class JsonFormatter
+    private
+    def format_example(example)
+      {
+        description: example.description,
+        full_description: example.full_description,
+        status: example.execution_result.status.to_s,
+        file_path: example.metadata['file_path'],
+        line_number: example.metadata['line_number'],
+        run_time: example.execution_result.run_time,
+        pending_message: example.execution_result.pending_message,
+        id: example.metadata[:id],
+      }
+    end
+  end
+end

data/lib/inspec/rule.rb ADDED Viewed

@@ -0,0 +1,170 @@
+# encoding: utf-8
+# copyright: 2015, Dominik Richter
+# license: All rights reserved
+# author: Dominik Richter
+# author: Christoph Hartmann
+require 'rspec/expectations'
+require 'method_source'
+module Inspec
+  class ExpectationTarget
+    attr_reader :calls, :value, :block
+    def initialize(value, &block)
+      @value = value
+      @block = block
+      @calls = []
+    end
+    def to(*args, &block)
+      @calls.push([:to, args, block, caller])
+    end
+    def not_to(*args, &block)
+      @calls.push([:not_to, args, block, caller])
+    end
+    def example_group
+      that = self
+      opts = { 'caller' => calls[0][3] }
+      if !calls[0][3].nil? && !calls[0][3].empty? &&
+         (m = calls[0][3][0].match(/^([^:]*):(\d+):/))
+        opts['file_path'] = m[0]
+        opts['line_number'] = m[1]
+      end
+      RSpec::Core::ExampleGroup.describe(that.value, opts) do
+        that.calls.each do |method, args, block, clr|
+          it(nil, caller: clr) do
+            x = expect(that.value, &that.block).method(method)
+            x.call(*args, &block)
+          end
+        end
+      end
+    end
+  end
+  class Rule
+    include ::RSpec::Matchers
+    def initialize(id, _opts, &block)
+      @id = id
+      @impact = nil
+      @__block = block
+      @__code = __get_block_source(&block)
+      @title = nil
+      @desc = nil
+      # not changeable by the user:
+      @profile_id = nil
+      @checks = []
+      # evaluate the given definition
+      instance_eval(&block) if block_given?
+    end
+    def id(*_)
+      # never overwrite the ID
+      @id
+    end
+    def impact(v = nil)
+      @impact = v unless v.nil?
+      @impact
+    end
+    def title(v = nil)
+      @title = v unless v.nil?
+      @title
+    end
+    def desc(v = nil)
+      @desc = unindent(v) unless v.nil?
+      @desc
+    end
+    def describe(value, &block)
+      @checks.push(['describe', [value], block])
+    end
+    def expect(value, &block)
+      target = ExpectationTarget.new(value, &block)
+      @checks.push(['expect', [value], target])
+      target
+    end
+    def self.merge(dst, src)
+      if src.id != dst.id
+        # TODO: register an error, this case should not happen
+        return
+      end
+      sp = src.instance_variable_get(:@profile_id)
+      dp = dst.instance_variable_get(:@profile_id)
+      if sp != dp
+        # TODO: register an error, this case should not happen
+        return
+      end
+      # merge all fields
+      dst.impact(src.impact) unless src.impact.nil?
+      dst.title(src.title)   unless src.title.nil?
+      dst.desc(src.desc)     unless src.desc.nil?
+      # merge indirect fields
+      # checks defined in the source will completely eliminate
+      # all checks that were defined in the destination
+      sc = src.instance_variable_get(:@checks)
+      unless sc.nil? || sc.empty?
+        dst.instance_variable_set(:@checks, sc)
+      end
+    end
+    # Get the full id consisting of profile id + rule id
+    # for the rule. If the rule's profile id is empty,
+    # the given profile_id will be used instead and also
+    # set for the rule.
+    def self.full_id(profile_id, rule)
+      if rule.is_a?(String) or rule.nil?
+        rid = rule
+      else
+        # As the profile context is exclusively pulled with a
+        # profile ID, attach it to the rule if necessary.
+        rid = rule.instance_variable_get(:@id)
+        if rid.nil?
+          # TODO: Message about skipping this rule
+          # due to missing ID
+          return nil
+        end
+      end
+      pid = rule.instance_variable_get(:@profile_id)
+      if pid.nil?
+        rule.instance_variable_set(:@profile_id, profile_id)
+        pid = profile_id
+      end
+      if pid.nil? or pid.empty?
+        return rid
+      else
+        return "#{pid}/#{rid}"
+      end
+    end
+    private
+    # Idio(ma)tic unindent
+    # TODO: replace this
+    #
+    # @param [String] text string which needs to be unindented
+    # @return [String] input with indentation removed
+    def unindent(text)
+      return '' if text.nil?
+      text.strip.split("\n").map(&:strip)
+        .map { |x| x.empty? ? "\n" : x }
+        .join(' ')
+    end
+    # get the rule's source code
+    def __get_block_source(&block)
+      return '' unless block_given?
+      block.source.to_s
+    rescue MethodSource::SourceNotFoundError
+      ''
+    end
+  end
+end

data/lib/inspec/runner.rb ADDED Viewed

@@ -0,0 +1,154 @@
+# encoding: utf-8
+# copyright: 2015, Dominik Richter
+# license: All rights reserved
+# author: Dominik Richter
+# author: Christoph Hartmann
+require 'uri'
+require 'inspec/backend'
+require 'inspec/profile_context'
+require 'inspec/targets'
+# spec requirements
+require 'rspec'
+require 'rspec/its'
+require 'inspec/rspec_json_formatter'
+module Inspec
+  class Runner # rubocop:disable Metrics/ClassLength
+    attr_reader :tests, :backend, :rules
+    def initialize(conf = {})
+      @rules = {}
+      @profile_id = conf[:id]
+      @conf = conf.dup
+      @conf[:logger] ||= Logger.new(nil)
+      @tests = RSpec::Core::World.new
+      configure_output
+      configure_transport
+    end
+    def normalize_map(hm)
+      res = {}
+      hm.each {|k, v|
+        res[k.to_s] = v
+      }
+      res
+    end
+    def configure_output
+      RSpec.configuration.add_formatter(@conf['format'] || 'progress')
+    end
+    def configure_transport
+      @backend = Inspec::Backend.create(@conf)
+    end
+    def add_tests(tests)
+      # retrieve the raw ruby code of all tests
+      items = tests.map do |test|
+        Inspec::Targets.resolve(test)
+      end.flatten
+      tests = items.find_all { |i| i[:type] == :test }
+      libs = items.find_all { |i| i[:type] == :library }
+      # add all tests (raw) to the runtime
+      tests.flatten.each do |test|
+        add_content(test, libs)
+      end
+    end
+    def create_context
+      Inspec::ProfileContext.new(@profile_id, @backend)
+    end
+    def add_content(test, libs)
+      content = test[:content]
+      return if content.nil? || content.empty?
+      # load all libraries
+      ctx = create_context
+      libs.each do |lib|
+        ctx.load(lib[:content].to_s, lib[:ref], lib[:line] || 1)
+      end
+      # evaluate the test content
+      ctx.load(content, test[:ref], test[:line] || 1)
+      # process the resulting rules
+      ctx.rules.each do |rule_id, rule|
+        register_rule(ctx, rule_id, rule)
+      end
+    end
+    def run
+      run_with(RSpec::Core::Runner.new(nil))
+    end
+    def run_with(rspec_runner)
+      rspec_runner.run_specs(@tests.ordered_example_groups)
+    end
+    private
+    def get_check_example(method_name, arg, block)
+      opts = {}
+      if !block.nil? && block.respond_to?(:source_location)
+        file_path, line = block.source_location
+        opts['file_path'] = file_path
+        opts['line_number'] = line
+      end
+      if !arg.empty? &&
+         arg[0].respond_to?(:resource_skipped) &&
+         !arg[0].resource_skipped.nil?
+        return RSpec::Core::ExampleGroup.describe(*arg, opts) do
+          it arg[0].resource_skipped
+        end
+      else
+        # add the resource
+        case method_name
+        when 'describe'
+          return RSpec::Core::ExampleGroup.describe(*arg, opts, &block)
+        when 'expect'
+          return block.example_group
+        else
+          fail "A rule was registered with #{method_name.inspect}, "\
+               "which isn't understood and cannot be processed."
+        end
+      end
+      nil
+    end
+    def register_rule(ctx, rule_id, rule)
+      @rules[rule_id] = rule
+      checks = rule.instance_variable_get(:@checks)
+      checks.each do |m, a, b|
+        # resource skipping
+        example = get_check_example(m, a, b)
+        # TODO: Remove this!! It is very dangerous to do this here.
+        # The goal of this is to make the audit DSL available to all
+        # describe blocks. Right now, these blocks are executed outside
+        # the scope of this run, thus not gaining ony of the DSL pieces.
+        # To circumvent this, the full DSL is attached to the example's
+        # scope.
+        dsl = ctx.method(:create_inner_dsl).call(backend)
+        example.send(:include, dsl)
+        set_rspec_ids(example, rule_id)
+        @tests.register(example)
+      end
+    end
+    def set_rspec_ids(example, id)
+      example.metadata[:id] = id
+      example.filtered_examples.each do |e|
+        e.metadata[:id] = id
+      end
+      example.children.each do |child|
+        set_rspec_ids(child, id)
+      end
+    end
+  end
+end

data/lib/inspec/shell.rb ADDED Viewed

@@ -0,0 +1,66 @@
+# encoding: utf-8
+# author: Dominik Richter
+# author: Christoph Hartmann
+module Inspec
+  class Shell
+    def initialize(runner)
+      @runner = runner
+      # load and configure pry
+      require 'pry'
+      configure_pry
+    end
+    def start
+      # store context to run commands in this context
+      @runner.add_content('binding.pry', __FILE__, __LINE__)
+      @runner.run
+    end
+    def configure_pry
+      # Remove all hooks and checks
+      Pry.hooks.clear_all
+      that = self
+      # Add the help command
+      Pry::Commands.block_command 'usage', 'Show examples' do
+        that.usage
+      end
+      # Add a help menu as the default intro
+      Pry.hooks.add_hook(:before_session, :intro) do
+        intro
+      end
+    end
+    def mark(x)
+      "\033[1m#{x}\033[0m"
+    end
+    def intro
+      puts 'Welcome to the interactive Inspec Shell'
+      puts "To find out how to use it, type: #{mark 'usage'}"
+      puts
+    end
+    def usage
+      ctx = @runner.backend
+      puts <<EOF
+Welcome to the interactive Inspec Shell.
+You can use resources in this environment to test the target machine.
+For example:
+    command('uname -a').stdout
+    file('/proc/cpuinfo').content
+You are currently running on:
+    OS family:  #{mark ctx.os[:family] || 'unknown'}
+    OS release: #{mark ctx.os[:release] || 'unknown'}
+EOF
+    end
+  end
+end