RubyGems - inspec - Versions diffs - 1.0.0.beta2 → 1.0.0.beta3 - Mend

inspec 1.0.0.beta2 → 1.0.0.beta3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (95) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +41 -2
data/Gemfile +4 -0
data/Rakefile +2 -1
data/docs/.gitignore +2 -0
data/docs/README.md +21 -1
data/docs/resources/apache_conf.md.erb +75 -0
data/docs/resources/apt.md.erb +84 -0
data/docs/resources/audit_policy.md.erb +61 -0
data/docs/resources/auditd_conf.md.erb +79 -0
data/docs/resources/auditd_rules.md.erb +132 -0
data/docs/resources/bash.md.erb +84 -0
data/docs/resources/bond.md.erb +97 -0
data/docs/resources/bridge.md.erb +67 -0
data/docs/resources/bsd_service.md.erb +76 -0
data/docs/resources/command.md.erb +151 -0
data/docs/resources/csv.md.erb +62 -0
data/docs/resources/directory.md.erb +43 -0
data/docs/resources/etc_group.md.erb +116 -0
data/docs/resources/etc_passwd.md.erb +155 -0
data/docs/resources/etc_shadow.md.erb +149 -0
data/docs/resources/file.md.erb +460 -0
data/docs/resources/gem.md.erb +73 -0
data/docs/resources/group.md.erb +74 -0
data/docs/resources/grub_conf.md.erb +115 -0
data/docs/resources/host.md.erb +85 -0
data/docs/resources/iis_site.md.erb +142 -0
data/docs/resources/inetd_conf.md.erb +99 -0
data/docs/resources/ini.md.erb +69 -0
data/docs/resources/interface.md.erb +66 -0
data/docs/resources/iptables.md.erb +70 -0
data/docs/resources/json.md.erb +76 -0
data/docs/resources/kernel_module.md.erb +60 -0
data/docs/resources/kernel_parameter.md.erb +72 -0
data/docs/resources/launchd_service.md.erb +76 -0
data/docs/resources/limits_conf.md.erb +80 -0
data/docs/resources/login_def.md.erb +77 -0
data/docs/resources/mount.md.erb +83 -0
data/docs/resources/mysql_conf.md.erb +102 -0
data/docs/resources/mysql_session.md.erb +63 -0
data/docs/resources/npm.md.erb +75 -0
data/docs/resources/ntp_conf.md.erb +76 -0
data/docs/resources/oneget.md.erb +67 -0
data/docs/resources/os.md.erb +154 -0
data/docs/resources/os_env.md.erb +98 -0
data/docs/resources/package.md.erb +115 -0
data/docs/resources/parse_config.md.erb +122 -0
data/docs/resources/parse_config_file.md.erb +143 -0
data/docs/resources/pip.md.erb +74 -0
data/docs/resources/port.md.erb +150 -0
data/docs/resources/postgres_conf.md.erb +90 -0
data/docs/resources/postgres_session.md.erb +75 -0
data/docs/resources/powershell.md.erb +116 -0
data/docs/resources/process.md.erb +73 -0
data/docs/resources/registry_key.md.erb +149 -0
data/docs/resources/runit_service.md.erb +76 -0
data/docs/resources/security_policy.md.erb +61 -0
data/docs/resources/service.md.erb +135 -0
data/docs/resources/ssh_config.md.erb +94 -0
data/docs/resources/sshd_config.md.erb +97 -0
data/docs/resources/ssl.md.erb +133 -0
data/docs/resources/sys_info.md.erb +55 -0
data/docs/resources/systemd_service.md.erb +76 -0
data/docs/resources/sysv_service.md.erb +76 -0
data/docs/resources/upstart_service.md.erb +76 -0
data/docs/resources/user.md.erb +154 -0
data/docs/resources/users.md.erb +140 -0
data/docs/resources/vbscript.md.erb +69 -0
data/docs/resources/windows_feature.md.erb +61 -0
data/docs/resources/wmi.md.erb +95 -0
data/docs/resources/xinetd_conf.md.erb +170 -0
data/docs/resources/yaml.md.erb +69 -0
data/docs/resources/yum.md.erb +103 -0
data/docs/ruby_usage.md +154 -0
data/docs/shared/matcher_be.md.erb +1 -0
data/docs/shared/matcher_cmp.md.erb +45 -0
data/docs/shared/matcher_eq.md.erb +3 -0
data/docs/shared/matcher_include.md.erb +1 -0
data/docs/shared/matcher_match.md.erb +1 -0
data/lib/fetchers/url.rb +27 -29
data/lib/inspec/cached_fetcher.rb +67 -0
data/lib/inspec/dependencies/requirement.rb +6 -7
data/lib/inspec/objects/each_loop.rb +5 -2
data/lib/inspec/plugins/fetcher.rb +2 -0
data/lib/inspec/profile.rb +9 -41
data/lib/inspec/resource.rb +1 -1
data/lib/inspec/rspec_json_formatter.rb +11 -5
data/lib/inspec/version.rb +1 -1
data/lib/resources/groups.rb +190 -0
data/lib/resources/users.rb +3 -2
metadata +79 -6
data/docs/cli.rst +0 -448
data/docs/resources.rst +0 -4836
data/docs/ruby_usage.rst +0 -145
data/lib/resources/group.rb +0 -137

data/lib/resources/users.rb CHANGED Viewed

@@ -4,11 +4,12 @@
 require 'utils/parser'
 require 'utils/convert'
+require 'utils/filter'
 module Inspec::Resources
   # This file contains two resources, the `user` and `users` resource.
   # The `user` resource is optimized for requests that verify specific users
-  # that you know upfront for testing. If you need to query all users or find
+  # that you know upfront for testing. If you need to query all users or search
   # specific users with certain properties, use the `users` resource.
   module UserManagementSelector
     # select user provider based on the operating system
@@ -65,7 +66,7 @@ module Inspec::Resources
     def initialize
       # select user provider
       @user_provider = select_user_manager(inspec.os)
-      return skip_resource 'The `user` resource is not supported on your OS yet.' if @user_provider.nil?
+      return skip_resource 'The `users` resource is not supported on your OS yet.' if @user_provider.nil?
     end
     filter = FilterTable.create

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: inspec
 version: !ruby/object:Gem::Version
-  version: 1.0.0.beta2
+  version: 1.0.0.beta3
 platform: ruby
 authors:
 - Dominik Richter
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-09-22 00:00:00.000000000 Z
+date: 2016-09-25 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: train
@@ -224,16 +224,88 @@ files:
 - README.md
 - Rakefile
 - bin/inspec
+- docs/.gitignore
 - docs/README.md
-- docs/cli.rst
+- docs/cli.md
 - docs/dsl_inspec.md
 - docs/dsl_resource.md
 - docs/inspec_and_friends.md
 - docs/matchers.md
 - docs/plugin_kitchen_inspec.html.md
 - docs/profiles.md
-- docs/resources.rst
-- docs/ruby_usage.rst
+- docs/resources/apache_conf.md.erb
+- docs/resources/apt.md.erb
+- docs/resources/audit_policy.md.erb
+- docs/resources/auditd_conf.md.erb
+- docs/resources/auditd_rules.md.erb
+- docs/resources/bash.md.erb
+- docs/resources/bond.md.erb
+- docs/resources/bridge.md.erb
+- docs/resources/bsd_service.md.erb
+- docs/resources/command.md.erb
+- docs/resources/csv.md.erb
+- docs/resources/directory.md.erb
+- docs/resources/etc_group.md.erb
+- docs/resources/etc_passwd.md.erb
+- docs/resources/etc_shadow.md.erb
+- docs/resources/file.md.erb
+- docs/resources/gem.md.erb
+- docs/resources/group.md.erb
+- docs/resources/grub_conf.md.erb
+- docs/resources/host.md.erb
+- docs/resources/iis_site.md.erb
+- docs/resources/inetd_conf.md.erb
+- docs/resources/ini.md.erb
+- docs/resources/interface.md.erb
+- docs/resources/iptables.md.erb
+- docs/resources/json.md.erb
+- docs/resources/kernel_module.md.erb
+- docs/resources/kernel_parameter.md.erb
+- docs/resources/launchd_service.md.erb
+- docs/resources/limits_conf.md.erb
+- docs/resources/login_def.md.erb
+- docs/resources/mount.md.erb
+- docs/resources/mysql_conf.md.erb
+- docs/resources/mysql_session.md.erb
+- docs/resources/npm.md.erb
+- docs/resources/ntp_conf.md.erb
+- docs/resources/oneget.md.erb
+- docs/resources/os.md.erb
+- docs/resources/os_env.md.erb
+- docs/resources/package.md.erb
+- docs/resources/parse_config.md.erb
+- docs/resources/parse_config_file.md.erb
+- docs/resources/pip.md.erb
+- docs/resources/port.md.erb
+- docs/resources/postgres_conf.md.erb
+- docs/resources/postgres_session.md.erb
+- docs/resources/powershell.md.erb
+- docs/resources/process.md.erb
+- docs/resources/registry_key.md.erb
+- docs/resources/runit_service.md.erb
+- docs/resources/security_policy.md.erb
+- docs/resources/service.md.erb
+- docs/resources/ssh_config.md.erb
+- docs/resources/sshd_config.md.erb
+- docs/resources/ssl.md.erb
+- docs/resources/sys_info.md.erb
+- docs/resources/systemd_service.md.erb
+- docs/resources/sysv_service.md.erb
+- docs/resources/upstart_service.md.erb
+- docs/resources/user.md.erb
+- docs/resources/users.md.erb
+- docs/resources/vbscript.md.erb
+- docs/resources/windows_feature.md.erb
+- docs/resources/wmi.md.erb
+- docs/resources/xinetd_conf.md.erb
+- docs/resources/yaml.md.erb
+- docs/resources/yum.md.erb
+- docs/ruby_usage.md
+- docs/shared/matcher_be.md.erb
+- docs/shared/matcher_cmp.md.erb
+- docs/shared/matcher_eq.md.erb
+- docs/shared/matcher_include.md.erb
+- docs/shared/matcher_match.md.erb
 - docs/shell.md
 - examples/README.md
 - examples/inheritance/README.md
@@ -309,6 +381,7 @@ files:
 - lib/inspec/archive/zip.rb
 - lib/inspec/backend.rb
 - lib/inspec/base_cli.rb
+- lib/inspec/cached_fetcher.rb
 - lib/inspec/cli.rb
 - lib/inspec/completions/bash.sh.erb
 - lib/inspec/completions/zsh.sh.erb
@@ -376,7 +449,7 @@ files:
 - lib/resources/etc_group.rb
 - lib/resources/file.rb
 - lib/resources/gem.rb
-- lib/resources/group.rb
+- lib/resources/groups.rb
 - lib/resources/grub_conf.rb
 - lib/resources/host.rb
 - lib/resources/iis_site.rb

data/docs/cli.rst DELETED Viewed

@@ -1,448 +0,0 @@
-=====================================================
-InSpec CLI
-=====================================================
-Use the InSpec CLI to run tests and audits against targets using local, SSH, WinRM, or Docker connections.
-archive
-=====================================================
-Archive a profile to tar.gz (default) or zip
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec archive PATH
-Options
------------------------------------------------------
-This subcommand has additional options:
-``--ignore-errors``, ``--no-ignore-errors``
-   Ignore profile warnings.
-``-o``, ``--output=OUTPUT``
-   Save the archive to a path
-``--overwrite``, ``--no-overwrite``
-   Overwrite existing archive.
-``--profiles-path=PROFILES_PATH``
-   Folder which contains referenced profiles.
-``--tar``, ``--no-tar``
-   Generates a tar.gz archive.
-``--zip``, ``--no-zip``
-   Generates a zip archive.
-check
-=====================================================
-Verify all tests at the specified path
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec check PATH
-Options
------------------------------------------------------
-This subcommand has additional options:
-``--format=FORMAT``
-``--profiles-path=PROFILES_PATH``
-   Folder which contains referenced profiles.
-compliance
-=====================================================
-Chef compliance commands
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec compliance SUBCOMMAND ...
-detect
-=====================================================
-Detect the target os
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec detect
-Options
------------------------------------------------------
-This subcommand has additional options:
-``-b``, ``--backend=BACKEND``
-   Choose a backend: local, ssh, winrm, docker.
-``--format=FORMAT``
-``--host=HOST``
-   Specify a remote host which is tested.
-``--json-config=JSON_CONFIG``
-   Read configuration from JSON file (`-` reads from stdin).
-``-i``, ``--key-files=one two three``
-   Login key or certificate file for a remote scan.
-``-l``, ``--log-level=LOG_LEVEL``
-   Set the log level: info (default), debug, warn, error
-``--password=PASSWORD``
-   Login password for a remote scan, if required.
-``--path=PATH``
-   Login path to use when connecting to the target (WinRM).
-``-p``, ``--port=N``
-   Specify the login port for a remote scan.
-``--self-signed``, ``--no-self-signed``
-   Allow remote scans with self-signed certificates (WinRM).
-``--ssl``, ``--no-ssl``
-   Use SSL for transport layer encryption (WinRM).
-``--sudo``, ``--no-sudo``
-   Run scans with sudo. Only activates on Unix and non-root user.
-``--sudo-command=SUDO_COMMAND``
-   Alternate command for sudo.
-``--sudo-options=SUDO_OPTIONS``
-   Additional sudo options for a remote scan.
-``--sudo-password=SUDO_PASSWORD``
-   Specify a sudo password, if it is required.
-``-t``, ``--target=TARGET``
-   Simple targeting option using URIs, e.g. ssh://user:pass@host:port
-``--user=USER``
-   The login user for a remote scan.
-env
-=====================================================
-Output shell-appropriate completion configuration
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec env
-exec
-=====================================================
-Run all test files at the specified path.
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec exec PATHS
-Options
------------------------------------------------------
-This subcommand has additional options:
-``--attrs=one two three``
-   Load attributes file (experimental)
-``-b``, ``--backend=BACKEND``
-   Choose a backend: local, ssh, winrm, docker.
-``--cache=CACHE``
-   Use the given path for caching dependencies. (default: ~/.inspec/cache)
-``--color``, ``--no-color``
-   Use colors in output.
-``--controls=one two three``
-   A list of controls to run. Ignore all other tests.
-``--create-lockfile``, ``--no-create-lockfile``
-   Write out a lockfile based on this execution (unless one already exists)
-``--format=FORMAT``
-   Which formatter to use: cli, progress, documentation, json, json-min
-``--host=HOST``
-   Specify a remote host which is tested.
-``--json-config=JSON_CONFIG``
-   Read configuration from JSON file (`-` reads from stdin).
-``-i``, ``--key-files=one two three``
-   Login key or certificate file for a remote scan.
-``-l``, ``--log-level=LOG_LEVEL``
-   Set the log level: info (default), debug, warn, error
-``--password=PASSWORD``
-   Login password for a remote scan, if required.
-``--path=PATH``
-   Login path to use when connecting to the target (WinRM).
-``-p``, ``--port=N``
-   Specify the login port for a remote scan.
-``--profiles-path=PROFILES_PATH``
-   Folder which contains referenced profiles.
-``--self-signed``, ``--no-self-signed``
-   Allow remote scans with self-signed certificates (WinRM).
-``--ssl``, ``--no-ssl``
-   Use SSL for transport layer encryption (WinRM).
-``--sudo``, ``--no-sudo``
-   Run scans with sudo. Only activates on Unix and non-root user.
-``--sudo-command=SUDO_COMMAND``
-   Alternate command for sudo.
-``--sudo-options=SUDO_OPTIONS``
-   Additional sudo options for a remote scan.
-``--sudo-password=SUDO_PASSWORD``
-   Specify a sudo password, if it is required.
-``-t``, ``--target=TARGET``
-   Simple targeting option using URIs, e.g. ssh://user:pass@host:port
-``--user=USER``
-   The login user for a remote scan.
-help
-=====================================================
-Describe available commands or one specific command
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec help [COMMAND]
-init
-=====================================================
-Scaffolds a new project
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec init TEMPLATE ...
-json
-=====================================================
-Read all tests in path and generate a json summary
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec json PATH
-Options
------------------------------------------------------
-This subcommand has additional options:
-``--controls=one two three``
-   A list of controls to include. Ignore all other tests.
-``-o``, ``--output=OUTPUT``
-   Save the created profile to a path
-``--profiles-path=PROFILES_PATH``
-   Folder which contains referenced profiles.
-shell
-=====================================================
-Open an interactive debugging shell
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec shell
-Options
------------------------------------------------------
-This subcommand has additional options:
-``-b``, ``--backend=BACKEND``
-   Choose a backend: local, ssh, winrm, docker.
-``-c``, ``--command=COMMAND``
-   A single command string to run instead of launching the shell
-``--host=HOST``
-   Specify a remote host which is tested.
-``--json-config=JSON_CONFIG``
-   Read configuration from JSON file (`-` reads from stdin).
-``-i``, ``--key-files=one two three``
-   Login key or certificate file for a remote scan.
-``-l``, ``--log-level=LOG_LEVEL``
-   Set the log level: info (default), debug, warn, error
-``--password=PASSWORD``
-   Login password for a remote scan, if required.
-``--path=PATH``
-   Login path to use when connecting to the target (WinRM).
-``-p``, ``--port=N``
-   Specify the login port for a remote scan.
-``--self-signed``, ``--no-self-signed``
-   Allow remote scans with self-signed certificates (WinRM).
-``--ssl``, ``--no-ssl``
-   Use SSL for transport layer encryption (WinRM).
-``--sudo``, ``--no-sudo``
-   Run scans with sudo. Only activates on Unix and non-root user.
-``--sudo-command=SUDO_COMMAND``
-   Alternate command for sudo.
-``--sudo-options=SUDO_OPTIONS``
-   Additional sudo options for a remote scan.
-``--sudo-password=SUDO_PASSWORD``
-   Specify a sudo password, if it is required.
-``-t``, ``--target=TARGET``
-   Simple targeting option using URIs, e.g. ssh://user:pass@host:port
-``--user=USER``
-   The login user for a remote scan.
-supermarket
-=====================================================
-Supermarket commands
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec supermarket SUBCOMMAND ...
-vendor
-=====================================================
-Download all dependencies and generate a lockfile
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec vendor
-version
-=====================================================
-Prints the version of this tool
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec version