RubyGems - inspec - Versions diffs - 2.2.112 → 2.3.4 - Mend

inspec 2.2.112 → 2.3.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (66) hide show

metadata CHANGED Viewed

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: inspec
 version: !ruby/object:Gem::Version
-  version: 2.2.112
+  version: 2.3.4
 platform: ruby
 authors:
 - Dominik Richter
 autorequire:
 bindir: bin
 cert_chain: []
-date: 2018-09-19 00:00:00.000000000 Z
+date: 2018-09-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: train
@@ -16,20 +16,14 @@ dependencies:
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.4'
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 1.4.37
+        version: '1.5'
   type: :runtime
   prerelease: false
   version_requirements: !ruby/object:Gem::Requirement
     requirements:
     - - "~>"
       - !ruby/object:Gem::Version
-        version: '1.4'
-    - - ">="
-      - !ruby/object:Gem::Version
-        version: 1.4.37
+        version: '1.5'
 - !ruby/object:Gem::Dependency
   name: thor
   requirement: !ruby/object:Gem::Requirement
@@ -308,6 +302,20 @@ dependencies:
     - - ">="
       - !ruby/object:Gem::Version
         version: '0'
+- !ruby/object:Gem::Dependency
+  name: term-ansicolor
+  requirement: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
+  type: :runtime
+  prerelease: false
+  version_requirements: !ruby/object:Gem::Requirement
+    requirements:
+    - - ">="
+      - !ruby/object:Gem::Version
+        version: '0'
 description: InSpec provides a framework for creating end-to-end infrastructure tests.
   You can use it for integration or even compliance testing. Create fully portable
   test profiles and use them in your workflow to ensure stability and security. Integrate
@@ -333,6 +341,7 @@ files:
 - docs/dev/control-eval.md
 - docs/dev/filtertable-internals.md
 - docs/dev/filtertable-usage.md
+- docs/dev/integration-testing.md
 - docs/dev/plugins.md
 - docs/dsl_inspec.md
 - docs/dsl_resource.md
@@ -343,6 +352,7 @@ files:
 - docs/migration.md
 - docs/platforms.md
 - docs/plugin_kitchen_inspec.md
+- docs/plugins.md
 - docs/profiles.md
 - docs/reporters.md
 - docs/resources/aide_conf.md.erb
@@ -358,6 +368,8 @@ files:
 - docs/resources/aws_cloudwatch_log_metric_filter.md.erb
 - docs/resources/aws_config_delivery_channel.md.erb
 - docs/resources/aws_config_recorder.md.erb
+- docs/resources/aws_ebs_volume.md.erb
+- docs/resources/aws_ebs_volumes.md.erb
 - docs/resources/aws_ec2_instance.md.erb
 - docs/resources/aws_ec2_instances.md.erb
 - docs/resources/aws_elb.md.erb
@@ -492,13 +504,13 @@ files:
 - docs/resources/yum.md.erb
 - docs/resources/zfs_dataset.md.erb
 - docs/resources/zfs_pool.md.erb
-- docs/ruby_usage.md
 - docs/shared/matcher_be.md.erb
 - docs/shared/matcher_cmp.md.erb
 - docs/shared/matcher_eq.md.erb
 - docs/shared/matcher_include.md.erb
 - docs/shared/matcher_match.md.erb
 - docs/shell.md
+- docs/style.md
 - examples/README.md
 - examples/custom-resource/README.md
 - examples/custom-resource/controls/example.rb
@@ -534,6 +546,22 @@ files:
 - examples/meta-profile/README.md
 - examples/meta-profile/controls/example.rb
 - examples/meta-profile/inspec.yml
+- examples/plugins/inspec-resource-lister/Gemfile
+- examples/plugins/inspec-resource-lister/LICENSE
+- examples/plugins/inspec-resource-lister/README.md
+- examples/plugins/inspec-resource-lister/Rakefile
+- examples/plugins/inspec-resource-lister/inspec-resource-lister.gemspec
+- examples/plugins/inspec-resource-lister/lib/inspec-resource-lister.rb
+- examples/plugins/inspec-resource-lister/lib/inspec-resource-lister/cli_command.rb
+- examples/plugins/inspec-resource-lister/lib/inspec-resource-lister/plugin.rb
+- examples/plugins/inspec-resource-lister/lib/inspec-resource-lister/version.rb
+- examples/plugins/inspec-resource-lister/test/fixtures/README.md
+- examples/plugins/inspec-resource-lister/test/functional/README.md
+- examples/plugins/inspec-resource-lister/test/functional/inspec_resource_lister_test.rb
+- examples/plugins/inspec-resource-lister/test/helper.rb
+- examples/plugins/inspec-resource-lister/test/unit/README.md
+- examples/plugins/inspec-resource-lister/test/unit/cli_args_test.rb
+- examples/plugins/inspec-resource-lister/test/unit/plugin_def_test.rb
 - examples/profile-attribute.yml
 - examples/profile-attribute/README.md
 - examples/profile-attribute/controls/example.rb
@@ -638,6 +666,7 @@ files:
 - lib/inspec/plugin/v1/registry.rb
 - lib/inspec/plugin/v2.rb
 - lib/inspec/plugin/v2/activator.rb
+- lib/inspec/plugin/v2/installer.rb
 - lib/inspec/plugin/v2/loader.rb
 - lib/inspec/plugin/v2/plugin_base.rb
 - lib/inspec/plugin/v2/plugin_types/cli.rb
@@ -691,7 +720,21 @@ files:
 - lib/plugins/inspec-init/lib/inspec-init/templates/profile/inspec.yml
 - lib/plugins/inspec-init/lib/inspec-init/templates/profile/libraries/.gitkeep
 - lib/plugins/inspec-init/test/functional/inspec_init_test.rb
+- lib/plugins/inspec-plugin-manager-cli/README.md
+- lib/plugins/inspec-plugin-manager-cli/lib/inspec-plugin-manager-cli.rb
+- lib/plugins/inspec-plugin-manager-cli/lib/inspec-plugin-manager-cli/cli_command.rb
+- lib/plugins/inspec-plugin-manager-cli/lib/inspec-plugin-manager-cli/plugin.rb
+- lib/plugins/inspec-plugin-manager-cli/test/fixtures/config_dirs/empty/.gitkeep
+- lib/plugins/inspec-plugin-manager-cli/test/fixtures/plugins/inspec-egg-white-omelette/lib/inspec-egg-white-omelette.rb
+- lib/plugins/inspec-plugin-manager-cli/test/fixtures/plugins/inspec-egg-white-omelette/lib/inspec-egg-white-omelette/.gitkeep
+- lib/plugins/inspec-plugin-manager-cli/test/fixtures/plugins/inspec-wrong-structure/.gitkeep
+- lib/plugins/inspec-plugin-manager-cli/test/fixtures/plugins/wrong-name/lib/wrong-name.rb
+- lib/plugins/inspec-plugin-manager-cli/test/fixtures/plugins/wrong-name/lib/wrong-name/.gitkeep
+- lib/plugins/inspec-plugin-manager-cli/test/functional/inspec-plugin_test.rb
+- lib/plugins/inspec-plugin-manager-cli/test/unit/cli_args_test.rb
+- lib/plugins/inspec-plugin-manager-cli/test/unit/plugin_def_test.rb
 - lib/plugins/shared/core_plugin_test_helper.rb
+- lib/plugins/things-for-train-integration.rb
 - lib/resource_support/aws.rb
 - lib/resource_support/aws/aws_backend_base.rb
 - lib/resource_support/aws/aws_backend_factory_mixin.rb
@@ -711,6 +754,8 @@ files:
 - lib/resources/aws/aws_cloudwatch_log_metric_filter.rb
 - lib/resources/aws/aws_config_delivery_channel.rb
 - lib/resources/aws/aws_config_recorder.rb
+- lib/resources/aws/aws_ebs_volume.rb
+- lib/resources/aws/aws_ebs_volumes.rb
 - lib/resources/aws/aws_ec2_instance.rb
 - lib/resources/aws/aws_ec2_instances.rb
 - lib/resources/aws/aws_ecs_cluster.rb

data/docs/ruby_usage.md DELETED Viewed

@@ -1,204 +0,0 @@
-# Using Ruby in InSpec
-The InSpec DSL is a Ruby based DSL for writing audit controls, which
-includes audit resources that you can invoke. Core and custom resources
-are written as regular Ruby classes which inherit from
-`Inspec.resource`.
-Assuming we have a JSON file like this on the node to be tested:
-```json
-{
-  "keys":[
-    {"username":"john", "key":"/opt/keys/johnd.key"},
-    {"username":"jane", "key":"/opt/keys/janed.key"},
-    {"username":"sunny ", "key":"/opt/keys/sunnym.key"}
-  ]
-}
-```
-The following example shows how you can use pure Ruby code(variables,
-loops, conditionals, regular expressions, etc) to run a few tests
-against the above JSON file:
-```ruby
-control 'check-interns' do
-  # use the json InSpec resource to get the file
-  json_obj = json('/opt/keys/interns.json')
-  describe json_obj do
-    its('keys') { should_not eq nil }
-  end
-  if json_obj['keys']
-    # loop over the keys array
-    json_obj['keys'].each do |intern|
-      username = intern['username'].strip
-      # check for white spaces chars in usernames
-      describe username do
-        it { should_not match(/\s/) }
-      end
-      # check key file owners and permissions
-      describe file(intern['key']) do
-        it { should be_owned_by username }
-        its('mode') { should cmp '0600' }
-      end
-    end
-  end
-end
-```
-## Execution
-It's important to understand that Ruby code used in custom resources and
-controls DSL is executed on the system that runs InSpec. This allows
-InSpec to work without Ruby and rubygems being required on remote
-targets(servers or containers).
-For example, using `` `ls ``\` or `system('ls')` will result in the `ls`
-command being run locally and not on the target(remote) system. In order
-to process the output of `ls` executed on the target system, use
-`inspec.command('ls')` or `inspec.powershell('ls')`
-Similarly, use `inspec.file(PATH)` to access files or directories from
-remote systems in your tests or custom resources.
-## Using rubygems
-Ruby gems are self-contained programs and libraries. If you create a custom
-resource please vendor gems into the library. This ensures that all resources
-are self-contained and complete and don't need any resolution at runtime. We
-vendor resources and requirements through dependency resolution, which is
-independent of programming languages and their resolver mechanisms.
-## Interactive Debugging with Pry
-Here's a sample InSpec control that users Ruby variables to instantiate
-an InSpec resource once and use the content in multiple tests.
-```ruby
-control 'check-perl' do
-  impact 0.3
-  title 'Check perl compiled options and permissions'
-  perl_out = command('perl -V')
-  #require 'pry'; binding.pry;
-  describe perl_out do
-    its('exit_status') { should eq 0 }
-    its('stdout') { should match (/USE_64_BIT_ALL/) }
-    its('stdout') { should match (/useposix=true/) }
-    its('stdout') { should match (/-fstack-protector/) }
-  end
-  # extract an array of include directories
-  perl_inc = perl_out.stdout.partition('@INC:').last.strip.split("\n")
-  # ensure include directories are only writable by 'owner'
-  perl_inc.each do |path|
-    describe directory(path.strip) do
-      it { should_not be_writable.by('group') }
-      it { should_not be_writable.by('other') }
-    end
-  end
-end
-```
-An **advanced** but very useful Ruby tip. In the previous example, I
-commented out the `require 'pry'; binding.pry;` line. If you remove the
-`#` prefix and run the control, the execution will stop at that line and
-give you a `pry` shell. Use that to troubleshoot, print variables, see
-methods available, etc. For the above example:
-```ruby
-[1] pry> perl_out.exit_status
-=> 0
-[2] pry> perl_out.stderr
-=> ""
-[3] pry> ls perl_out
-Inspec::Plugins::Resource#methods: inspect
-Inspec::Resources::Cmd#methods: command  exist?  exit_status  result  stderr  stdout  to_s
-Inspec::Resource::Registry::Command#methods: inspec
-instance variables: @__backend_runner__  @__resource_name__  @command  @result
-[4] pry> perl_out.stdout.partition('@INC:').last.strip.split("\n")
-=> ["/Library/Perl/5.18/darwin-thread-multi-2level",
- "    /Library/Perl/5.18",
-...REDACTED...
-[5] pry> exit    # or abort
-```
-You can use `pry` inside both the controls DSL and resources. Similarly,
-for dev and test, you can use `inspec shell` which is based on `pry`,
-for example:
-```ruby
-$ inspec shell
-Welcome to the interactive InSpec Shell
-To find out how to use it, type: help
-inspec> command('ls /home/gordon/git/inspec/docs').stdout
-=> "ctl_inspec.rst\ndsl_inspec.rst\ndsl_resource.rst\n"
-inspec> command('ls').stdout.split("\n")
-=> ["ctl_inspec.rst", "dsl_inspec.rst", "dsl_resource.rst"]
-inspec> help command
-Name: command
-Description:
-Use the command InSpec audit resource to test an arbitrary command that is run on the system.
-Example:
-describe command('ls -al /') do
-  it { should exist }
-  its('stdout') { should match /bin/ }
-  its('stderr') { should eq '' }
-  its('exit_status') { should eq 0 }
-end
-```
-## Shelling out in tests
-When writing tests you can not use standard ruby methods to shellout as it tries to execute those commands locally.
-However, the `command` resource has a `.stdout` method that will allow you to manipulate the results.
-Using the above example, you could check the writes on several subdirectories.
-### Example 1
-```ruby
-$ inspec shell
-Welcome to the interactive InSpec Shell
-To find out how to use it, type: help
-inspec> output=command('echo test').stdout
-=> "test\n"
-inspec> describe command('echo test') do
-inspec>   its('stdout') { should eq output }
-inspec> end
-Profile: inspec-shell
-Version: (not specified)
-  Command echo
-     ✔  test stdout should eq "test\n"
-Test Summary: 1 successful, 0 failures, 0 skipped
-```
-### Example 2
-```ruby
-$ inspec shell
-Welcome to the interactive InSpec Shell
-To find out how to use it, type: help
-inspec> dirs = command('ls -d /home/gordon/git/inspec/docs').stdout.split("\n")
-=> ["/home/gordon/git/inspec/docs"]
-inspec> dirs.each do |dir|
-inspec>   describe directory(dir) do
-inspec>     its('mode') { should cmp '0775' }
-inspec>   end
-inspec> end
-Profile: inspec-shell
-Version: (not specified)
-  File /home/gordon/git/inspec/docs/
-     ✔  mode should cmp == "0775"
-Test Summary: 1 successful, 0 failures, 0 skipped
-```