RubyGems - inspec - Versions diffs - 1.0.0.beta2 → 1.0.0.beta3 - Mend

inspec 1.0.0.beta2 → 1.0.0.beta3

Files changed (95) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +41 -2
data/Gemfile +4 -0
data/Rakefile +2 -1
data/docs/.gitignore +2 -0
data/docs/README.md +21 -1
data/docs/resources/apache_conf.md.erb +75 -0
data/docs/resources/apt.md.erb +84 -0
data/docs/resources/audit_policy.md.erb +61 -0
data/docs/resources/auditd_conf.md.erb +79 -0
data/docs/resources/auditd_rules.md.erb +132 -0
data/docs/resources/bash.md.erb +84 -0
data/docs/resources/bond.md.erb +97 -0
data/docs/resources/bridge.md.erb +67 -0
data/docs/resources/bsd_service.md.erb +76 -0
data/docs/resources/command.md.erb +151 -0
data/docs/resources/csv.md.erb +62 -0
data/docs/resources/directory.md.erb +43 -0
data/docs/resources/etc_group.md.erb +116 -0
data/docs/resources/etc_passwd.md.erb +155 -0
data/docs/resources/etc_shadow.md.erb +149 -0
data/docs/resources/file.md.erb +460 -0
data/docs/resources/gem.md.erb +73 -0
data/docs/resources/group.md.erb +74 -0
data/docs/resources/grub_conf.md.erb +115 -0
data/docs/resources/host.md.erb +85 -0
data/docs/resources/iis_site.md.erb +142 -0
data/docs/resources/inetd_conf.md.erb +99 -0
data/docs/resources/ini.md.erb +69 -0
data/docs/resources/interface.md.erb +66 -0
data/docs/resources/iptables.md.erb +70 -0
data/docs/resources/json.md.erb +76 -0
data/docs/resources/kernel_module.md.erb +60 -0
data/docs/resources/kernel_parameter.md.erb +72 -0
data/docs/resources/launchd_service.md.erb +76 -0
data/docs/resources/limits_conf.md.erb +80 -0
data/docs/resources/login_def.md.erb +77 -0
data/docs/resources/mount.md.erb +83 -0
data/docs/resources/mysql_conf.md.erb +102 -0
data/docs/resources/mysql_session.md.erb +63 -0
data/docs/resources/npm.md.erb +75 -0
data/docs/resources/ntp_conf.md.erb +76 -0
data/docs/resources/oneget.md.erb +67 -0
data/docs/resources/os.md.erb +154 -0
data/docs/resources/os_env.md.erb +98 -0
data/docs/resources/package.md.erb +115 -0
data/docs/resources/parse_config.md.erb +122 -0
data/docs/resources/parse_config_file.md.erb +143 -0
data/docs/resources/pip.md.erb +74 -0
data/docs/resources/port.md.erb +150 -0
data/docs/resources/postgres_conf.md.erb +90 -0
data/docs/resources/postgres_session.md.erb +75 -0
data/docs/resources/powershell.md.erb +116 -0
data/docs/resources/process.md.erb +73 -0
data/docs/resources/registry_key.md.erb +149 -0
data/docs/resources/runit_service.md.erb +76 -0
data/docs/resources/security_policy.md.erb +61 -0
data/docs/resources/service.md.erb +135 -0
data/docs/resources/ssh_config.md.erb +94 -0
data/docs/resources/sshd_config.md.erb +97 -0
data/docs/resources/ssl.md.erb +133 -0
data/docs/resources/sys_info.md.erb +55 -0
data/docs/resources/systemd_service.md.erb +76 -0
data/docs/resources/sysv_service.md.erb +76 -0
data/docs/resources/upstart_service.md.erb +76 -0
data/docs/resources/user.md.erb +154 -0
data/docs/resources/users.md.erb +140 -0
data/docs/resources/vbscript.md.erb +69 -0
data/docs/resources/windows_feature.md.erb +61 -0
data/docs/resources/wmi.md.erb +95 -0
data/docs/resources/xinetd_conf.md.erb +170 -0
data/docs/resources/yaml.md.erb +69 -0
data/docs/resources/yum.md.erb +103 -0
data/docs/ruby_usage.md +154 -0
data/docs/shared/matcher_be.md.erb +1 -0
data/docs/shared/matcher_cmp.md.erb +45 -0
data/docs/shared/matcher_eq.md.erb +3 -0
data/docs/shared/matcher_include.md.erb +1 -0
data/docs/shared/matcher_match.md.erb +1 -0
data/lib/fetchers/url.rb +27 -29
data/lib/inspec/cached_fetcher.rb +67 -0
data/lib/inspec/dependencies/requirement.rb +6 -7
data/lib/inspec/objects/each_loop.rb +5 -2
data/lib/inspec/plugins/fetcher.rb +2 -0
data/lib/inspec/profile.rb +9 -41
data/lib/inspec/resource.rb +1 -1
data/lib/inspec/rspec_json_formatter.rb +11 -5
data/lib/inspec/version.rb +1 -1
data/lib/resources/groups.rb +190 -0
data/lib/resources/users.rb +3 -2
metadata +79 -6
data/docs/cli.rst +0 -448
data/docs/resources.rst +0 -4836
data/docs/ruby_usage.rst +0 -145
data/lib/resources/group.rb +0 -137

data/lib/resources/users.rb CHANGED Viewed

@@ -4,11 +4,12 @@
 require 'utils/parser'
 require 'utils/convert'
+require 'utils/filter'
 module Inspec::Resources
   # This file contains two resources, the `user` and `users` resource.
   # The `user` resource is optimized for requests that verify specific users
-  # that you know upfront for testing. If you need to query all users or find
+  # that you know upfront for testing. If you need to query all users or search
   # specific users with certain properties, use the `users` resource.
   module UserManagementSelector
     # select user provider based on the operating system
@@ -65,7 +66,7 @@ module Inspec::Resources
     def initialize
       # select user provider
       @user_provider = select_user_manager(inspec.os)
-      return skip_resource 'The `user` resource is not supported on your OS yet.' if @user_provider.nil?
+      return skip_resource 'The `users` resource is not supported on your OS yet.' if @user_provider.nil?
     end
     filter = FilterTable.create

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: inspec
 version: !ruby/object:Gem::Version
-  version: 1.0.0.beta2
+  version: 1.0.0.beta3
 platform: ruby
 authors:
 - Dominik Richter
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2016-09-22 00:00:00.000000000 Z
+date: 2016-09-25 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: train
@@ -224,16 +224,88 @@ files:
 - README.md
 - Rakefile
 - bin/inspec
+- docs/.gitignore
 - docs/README.md
-- docs/cli.rst
+- docs/cli.md
 - docs/dsl_inspec.md
 - docs/dsl_resource.md
 - docs/inspec_and_friends.md
 - docs/matchers.md
 - docs/plugin_kitchen_inspec.html.md
 - docs/profiles.md
-- docs/resources.rst
-- docs/ruby_usage.rst
+- docs/resources/apache_conf.md.erb
+- docs/resources/apt.md.erb
+- docs/resources/audit_policy.md.erb
+- docs/resources/auditd_conf.md.erb
+- docs/resources/auditd_rules.md.erb
+- docs/resources/bash.md.erb
+- docs/resources/bond.md.erb
+- docs/resources/bridge.md.erb
+- docs/resources/bsd_service.md.erb
+- docs/resources/command.md.erb
+- docs/resources/csv.md.erb
+- docs/resources/directory.md.erb
+- docs/resources/etc_group.md.erb
+- docs/resources/etc_passwd.md.erb
+- docs/resources/etc_shadow.md.erb
+- docs/resources/file.md.erb
+- docs/resources/gem.md.erb
+- docs/resources/group.md.erb
+- docs/resources/grub_conf.md.erb
+- docs/resources/host.md.erb
+- docs/resources/iis_site.md.erb
+- docs/resources/inetd_conf.md.erb
+- docs/resources/ini.md.erb
+- docs/resources/interface.md.erb
+- docs/resources/iptables.md.erb
+- docs/resources/json.md.erb
+- docs/resources/kernel_module.md.erb
+- docs/resources/kernel_parameter.md.erb
+- docs/resources/launchd_service.md.erb
+- docs/resources/limits_conf.md.erb
+- docs/resources/login_def.md.erb
+- docs/resources/mount.md.erb
+- docs/resources/mysql_conf.md.erb
+- docs/resources/mysql_session.md.erb
+- docs/resources/npm.md.erb
+- docs/resources/ntp_conf.md.erb
+- docs/resources/oneget.md.erb
+- docs/resources/os.md.erb
+- docs/resources/os_env.md.erb
+- docs/resources/package.md.erb
+- docs/resources/parse_config.md.erb
+- docs/resources/parse_config_file.md.erb
+- docs/resources/pip.md.erb
+- docs/resources/port.md.erb
+- docs/resources/postgres_conf.md.erb
+- docs/resources/postgres_session.md.erb
+- docs/resources/powershell.md.erb
+- docs/resources/process.md.erb
+- docs/resources/registry_key.md.erb
+- docs/resources/runit_service.md.erb
+- docs/resources/security_policy.md.erb
+- docs/resources/service.md.erb
+- docs/resources/ssh_config.md.erb
+- docs/resources/sshd_config.md.erb
+- docs/resources/ssl.md.erb
+- docs/resources/sys_info.md.erb
+- docs/resources/systemd_service.md.erb
+- docs/resources/sysv_service.md.erb
+- docs/resources/upstart_service.md.erb
+- docs/resources/user.md.erb
+- docs/resources/users.md.erb
+- docs/resources/vbscript.md.erb
+- docs/resources/windows_feature.md.erb
+- docs/resources/wmi.md.erb
+- docs/resources/xinetd_conf.md.erb
+- docs/resources/yaml.md.erb
+- docs/resources/yum.md.erb
+- docs/ruby_usage.md
+- docs/shared/matcher_be.md.erb
+- docs/shared/matcher_cmp.md.erb
+- docs/shared/matcher_eq.md.erb
+- docs/shared/matcher_include.md.erb
+- docs/shared/matcher_match.md.erb
 - docs/shell.md
 - examples/README.md
 - examples/inheritance/README.md
@@ -309,6 +381,7 @@ files:
 - lib/inspec/archive/zip.rb
 - lib/inspec/backend.rb
 - lib/inspec/base_cli.rb
+- lib/inspec/cached_fetcher.rb
 - lib/inspec/cli.rb
 - lib/inspec/completions/bash.sh.erb
 - lib/inspec/completions/zsh.sh.erb
@@ -376,7 +449,7 @@ files:
 - lib/resources/etc_group.rb
 - lib/resources/file.rb
 - lib/resources/gem.rb
-- lib/resources/group.rb
+- lib/resources/groups.rb
 - lib/resources/grub_conf.rb
 - lib/resources/host.rb
 - lib/resources/iis_site.rb

data/docs/cli.rst DELETED Viewed

@@ -1,448 +0,0 @@
-=====================================================
-InSpec CLI
-=====================================================
-Use the InSpec CLI to run tests and audits against targets using local, SSH, WinRM, or Docker connections.
-archive
-=====================================================
-Archive a profile to tar.gz (default) or zip
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec archive PATH
-Options
------------------------------------------------------
-This subcommand has additional options:
-``--ignore-errors``, ``--no-ignore-errors``
-   Ignore profile warnings.
-``-o``, ``--output=OUTPUT``
-   Save the archive to a path
-``--overwrite``, ``--no-overwrite``
-   Overwrite existing archive.
-``--profiles-path=PROFILES_PATH``
-   Folder which contains referenced profiles.
-``--tar``, ``--no-tar``
-   Generates a tar.gz archive.
-``--zip``, ``--no-zip``
-   Generates a zip archive.
-check
-=====================================================
-Verify all tests at the specified path
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec check PATH
-Options
------------------------------------------------------
-This subcommand has additional options:
-``--format=FORMAT``
-``--profiles-path=PROFILES_PATH``
-   Folder which contains referenced profiles.
-compliance
-=====================================================
-Chef compliance commands
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec compliance SUBCOMMAND ...
-detect
-=====================================================
-Detect the target os
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec detect
-Options
------------------------------------------------------
-This subcommand has additional options:
-``-b``, ``--backend=BACKEND``
-   Choose a backend: local, ssh, winrm, docker.
-``--format=FORMAT``
-``--host=HOST``
-   Specify a remote host which is tested.
-``--json-config=JSON_CONFIG``
-   Read configuration from JSON file (`-` reads from stdin).
-``-i``, ``--key-files=one two three``
-   Login key or certificate file for a remote scan.
-``-l``, ``--log-level=LOG_LEVEL``
-   Set the log level: info (default), debug, warn, error
-``--password=PASSWORD``
-   Login password for a remote scan, if required.
-``--path=PATH``
-   Login path to use when connecting to the target (WinRM).
-``-p``, ``--port=N``
-   Specify the login port for a remote scan.
-``--self-signed``, ``--no-self-signed``
-   Allow remote scans with self-signed certificates (WinRM).
-``--ssl``, ``--no-ssl``
-   Use SSL for transport layer encryption (WinRM).
-``--sudo``, ``--no-sudo``
-   Run scans with sudo. Only activates on Unix and non-root user.
-``--sudo-command=SUDO_COMMAND``
-   Alternate command for sudo.
-``--sudo-options=SUDO_OPTIONS``
-   Additional sudo options for a remote scan.
-``--sudo-password=SUDO_PASSWORD``
-   Specify a sudo password, if it is required.
-``-t``, ``--target=TARGET``
-   Simple targeting option using URIs, e.g. ssh://user:pass@host:port
-``--user=USER``
-   The login user for a remote scan.
-env
-=====================================================
-Output shell-appropriate completion configuration
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec env
-exec
-=====================================================
-Run all test files at the specified path.
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec exec PATHS
-Options
------------------------------------------------------
-This subcommand has additional options:
-``--attrs=one two three``
-   Load attributes file (experimental)
-``-b``, ``--backend=BACKEND``
-   Choose a backend: local, ssh, winrm, docker.
-``--cache=CACHE``
-   Use the given path for caching dependencies. (default: ~/.inspec/cache)
-``--color``, ``--no-color``
-   Use colors in output.
-``--controls=one two three``
-   A list of controls to run. Ignore all other tests.
-``--create-lockfile``, ``--no-create-lockfile``
-   Write out a lockfile based on this execution (unless one already exists)
-``--format=FORMAT``
-   Which formatter to use: cli, progress, documentation, json, json-min
-``--host=HOST``
-   Specify a remote host which is tested.
-``--json-config=JSON_CONFIG``
-   Read configuration from JSON file (`-` reads from stdin).
-``-i``, ``--key-files=one two three``
-   Login key or certificate file for a remote scan.
-``-l``, ``--log-level=LOG_LEVEL``
-   Set the log level: info (default), debug, warn, error
-``--password=PASSWORD``
-   Login password for a remote scan, if required.
-``--path=PATH``
-   Login path to use when connecting to the target (WinRM).
-``-p``, ``--port=N``
-   Specify the login port for a remote scan.
-``--profiles-path=PROFILES_PATH``
-   Folder which contains referenced profiles.
-``--self-signed``, ``--no-self-signed``
-   Allow remote scans with self-signed certificates (WinRM).
-``--ssl``, ``--no-ssl``
-   Use SSL for transport layer encryption (WinRM).
-``--sudo``, ``--no-sudo``
-   Run scans with sudo. Only activates on Unix and non-root user.
-``--sudo-command=SUDO_COMMAND``
-   Alternate command for sudo.
-``--sudo-options=SUDO_OPTIONS``
-   Additional sudo options for a remote scan.
-``--sudo-password=SUDO_PASSWORD``
-   Specify a sudo password, if it is required.
-``-t``, ``--target=TARGET``
-   Simple targeting option using URIs, e.g. ssh://user:pass@host:port
-``--user=USER``
-   The login user for a remote scan.
-help
-=====================================================
-Describe available commands or one specific command
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec help [COMMAND]
-init
-=====================================================
-Scaffolds a new project
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec init TEMPLATE ...
-json
-=====================================================
-Read all tests in path and generate a json summary
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec json PATH
-Options
------------------------------------------------------
-This subcommand has additional options:
-``--controls=one two three``
-   A list of controls to include. Ignore all other tests.
-``-o``, ``--output=OUTPUT``
-   Save the created profile to a path
-``--profiles-path=PROFILES_PATH``
-   Folder which contains referenced profiles.
-shell
-=====================================================
-Open an interactive debugging shell
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec shell
-Options
------------------------------------------------------
-This subcommand has additional options:
-``-b``, ``--backend=BACKEND``
-   Choose a backend: local, ssh, winrm, docker.
-``-c``, ``--command=COMMAND``
-   A single command string to run instead of launching the shell
-``--host=HOST``
-   Specify a remote host which is tested.
-``--json-config=JSON_CONFIG``
-   Read configuration from JSON file (`-` reads from stdin).
-``-i``, ``--key-files=one two three``
-   Login key or certificate file for a remote scan.
-``-l``, ``--log-level=LOG_LEVEL``
-   Set the log level: info (default), debug, warn, error
-``--password=PASSWORD``
-   Login password for a remote scan, if required.
-``--path=PATH``
-   Login path to use when connecting to the target (WinRM).
-``-p``, ``--port=N``
-   Specify the login port for a remote scan.
-``--self-signed``, ``--no-self-signed``
-   Allow remote scans with self-signed certificates (WinRM).
-``--ssl``, ``--no-ssl``
-   Use SSL for transport layer encryption (WinRM).
-``--sudo``, ``--no-sudo``
-   Run scans with sudo. Only activates on Unix and non-root user.
-``--sudo-command=SUDO_COMMAND``
-   Alternate command for sudo.
-``--sudo-options=SUDO_OPTIONS``
-   Additional sudo options for a remote scan.
-``--sudo-password=SUDO_PASSWORD``
-   Specify a sudo password, if it is required.
-``-t``, ``--target=TARGET``
-   Simple targeting option using URIs, e.g. ssh://user:pass@host:port
-``--user=USER``
-   The login user for a remote scan.
-supermarket
-=====================================================
-Supermarket commands
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec supermarket SUBCOMMAND ...
-vendor
-=====================================================
-Download all dependencies and generate a lockfile
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec vendor
-version
-=====================================================
-Prints the version of this tool
-Syntax
------------------------------------------------------
-This subcommand has the following syntax:
-.. code-block:: bash
-   $ inspec version