RubyGems - inspec - Versions diffs - 2.2.55 → 2.2.61 - Mend

inspec 2.2.55 → 2.2.61

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (161) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +24 -8
data/docs/resources/aide_conf.md.erb +10 -0
data/docs/resources/apache.md.erb +10 -0
data/docs/resources/apache_conf.md.erb +10 -0
data/docs/resources/apt.md.erb +10 -0
data/docs/resources/audit_policy.md.erb +10 -0
data/docs/resources/auditd.md.erb +10 -0
data/docs/resources/auditd_conf.md.erb +10 -0
data/docs/resources/aws_cloudtrail_trail.md.erb +10 -0
data/docs/resources/aws_cloudtrail_trails.md.erb +10 -0
data/docs/resources/aws_cloudwatch_alarm.md.erb +10 -0
data/docs/resources/aws_cloudwatch_log_metric_filter.md.erb +10 -0
data/docs/resources/aws_config_delivery_channel.md.erb +10 -0
data/docs/resources/aws_config_recorder.md.erb +10 -0
data/docs/resources/aws_ec2_instance.md.erb +10 -0
data/docs/resources/aws_ec2_instances.md.erb +10 -0
data/docs/resources/aws_elb.md.erb +10 -0
data/docs/resources/aws_elbs.md.erb +10 -0
data/docs/resources/aws_flow_log.md.erb +10 -0
data/docs/resources/aws_iam_access_key.md.erb +10 -0
data/docs/resources/aws_iam_access_keys.md.erb +10 -0
data/docs/resources/aws_iam_group.md.erb +10 -0
data/docs/resources/aws_iam_groups.md.erb +10 -0
data/docs/resources/aws_iam_password_policy.md.erb +10 -0
data/docs/resources/aws_iam_policies.md.erb +10 -0
data/docs/resources/aws_iam_policy.md.erb +10 -0
data/docs/resources/aws_iam_role.md.erb +10 -0
data/docs/resources/aws_iam_root_user.md.erb +10 -0
data/docs/resources/aws_iam_user.md.erb +10 -0
data/docs/resources/aws_iam_users.md.erb +10 -0
data/docs/resources/aws_kms_key.md.erb +10 -0
data/docs/resources/aws_kms_keys.md.erb +10 -0
data/docs/resources/aws_rds_instance.md.erb +10 -0
data/docs/resources/aws_route_table.md.erb +10 -0
data/docs/resources/aws_route_tables.md.erb +10 -0
data/docs/resources/aws_s3_bucket.md.erb +10 -0
data/docs/resources/aws_s3_bucket_object.md.erb +10 -0
data/docs/resources/aws_s3_buckets.md.erb +10 -0
data/docs/resources/aws_security_group.md.erb +10 -0
data/docs/resources/aws_security_groups.md.erb +10 -0
data/docs/resources/aws_sns_subscription.md.erb +10 -0
data/docs/resources/aws_sns_topic.md.erb +10 -0
data/docs/resources/aws_sns_topics.md.erb +10 -0
data/docs/resources/aws_subnet.md.erb +10 -0
data/docs/resources/aws_subnets.md.erb +10 -0
data/docs/resources/aws_vpc.md.erb +10 -0
data/docs/resources/aws_vpcs.md.erb +10 -0
data/docs/resources/azure_generic_resource.md.erb +10 -0
data/docs/resources/azure_resource_group.md.erb +10 -0
data/docs/resources/azure_virtual_machine.md.erb +10 -0
data/docs/resources/azure_virtual_machine_data_disk.md.erb +10 -0
data/docs/resources/bash.md.erb +10 -0
data/docs/resources/bond.md.erb +10 -0
data/docs/resources/bridge.md.erb +10 -0
data/docs/resources/bsd_service.md.erb +10 -0
data/docs/resources/chocolatey_package.md.erb +10 -0
data/docs/resources/command.md.erb +10 -0
data/docs/resources/cpan.md.erb +10 -0
data/docs/resources/cran.md.erb +10 -0
data/docs/resources/crontab.md.erb +10 -0
data/docs/resources/csv.md.erb +10 -0
data/docs/resources/dh_params.md.erb +10 -0
data/docs/resources/directory.md.erb +10 -0
data/docs/resources/docker.md.erb +21 -0
data/docs/resources/docker_container.md.erb +10 -0
data/docs/resources/docker_image.md.erb +10 -0
data/docs/resources/docker_plugin.md.erb +80 -0
data/docs/resources/docker_service.md.erb +10 -0
data/docs/resources/elasticsearch.md.erb +10 -0
data/docs/resources/etc_fstab.md.erb +10 -0
data/docs/resources/etc_group.md.erb +10 -0
data/docs/resources/etc_hosts.md.erb +10 -0
data/docs/resources/etc_hosts_allow.md.erb +10 -0
data/docs/resources/etc_hosts_deny.md.erb +10 -0
data/docs/resources/file.md.erb +10 -0
data/docs/resources/filesystem.md.erb +10 -0
data/docs/resources/firewalld.md.erb +10 -0
data/docs/resources/gem.md.erb +10 -0
data/docs/resources/group.md.erb +10 -0
data/docs/resources/grub_conf.md.erb +10 -0
data/docs/resources/host.md.erb +10 -0
data/docs/resources/http.md.erb +10 -0
data/docs/resources/iis_app.md.erb +10 -0
data/docs/resources/iis_site.md.erb +10 -0
data/docs/resources/inetd_conf.md.erb +10 -0
data/docs/resources/ini.md.erb +10 -0
data/docs/resources/interface.md.erb +10 -0
data/docs/resources/iptables.md.erb +10 -0
data/docs/resources/json.md.erb +10 -0
data/docs/resources/kernel_module.md.erb +10 -0
data/docs/resources/kernel_parameter.md.erb +10 -0
data/docs/resources/key_rsa.md.erb +10 -0
data/docs/resources/launchd_service.md.erb +10 -0
data/docs/resources/limits_conf.md.erb +10 -0
data/docs/resources/login_defs.md.erb +10 -0
data/docs/resources/mount.md.erb +10 -0
data/docs/resources/mssql_session.md.erb +10 -0
data/docs/resources/mysql_conf.md.erb +10 -0
data/docs/resources/mysql_session.md.erb +10 -0
data/docs/resources/nginx.md.erb +10 -0
data/docs/resources/nginx_conf.md.erb +10 -0
data/docs/resources/npm.md.erb +10 -0
data/docs/resources/ntp_conf.md.erb +10 -0
data/docs/resources/oneget.md.erb +10 -0
data/docs/resources/oracledb_session.md.erb +10 -0
data/docs/resources/os.md.erb +10 -0
data/docs/resources/os_env.md.erb +10 -0
data/docs/resources/package.md.erb +10 -0
data/docs/resources/packages.md.erb +10 -0
data/docs/resources/parse_config.md.erb +10 -0
data/docs/resources/parse_config_file.md.erb +10 -0
data/docs/resources/passwd.md.erb +10 -0
data/docs/resources/pip.md.erb +10 -0
data/docs/resources/port.md.erb +10 -0
data/docs/resources/postgres_conf.md.erb +10 -0
data/docs/resources/postgres_hba_conf.md.erb +10 -0
data/docs/resources/postgres_ident_conf.md.erb +10 -0
data/docs/resources/postgres_session.md.erb +10 -0
data/docs/resources/powershell.md.erb +10 -0
data/docs/resources/processes.md.erb +10 -0
data/docs/resources/rabbitmq_config.md.erb +10 -0
data/docs/resources/registry_key.md.erb +38 -2
data/docs/resources/runit_service.md.erb +10 -0
data/docs/resources/security_policy.md.erb +10 -0
data/docs/resources/service.md.erb +10 -0
data/docs/resources/shadow.md.erb +10 -0
data/docs/resources/ssh_config.md.erb +10 -0
data/docs/resources/sshd_config.md.erb +10 -0
data/docs/resources/ssl.md.erb +10 -0
data/docs/resources/sys_info.md.erb +10 -0
data/docs/resources/systemd_service.md.erb +10 -0
data/docs/resources/sysv_service.md.erb +10 -0
data/docs/resources/upstart_service.md.erb +10 -0
data/docs/resources/user.md.erb +10 -0
data/docs/resources/users.md.erb +10 -0
data/docs/resources/vbscript.md.erb +10 -0
data/docs/resources/virtualization.md.erb +10 -0
data/docs/resources/windows_feature.md.erb +10 -0
data/docs/resources/windows_hotfix.md.erb +10 -0
data/docs/resources/windows_task.md.erb +10 -0
data/docs/resources/wmi.md.erb +10 -0
data/docs/resources/x509_certificate.md.erb +10 -0
data/docs/resources/xinetd_conf.md.erb +10 -0
data/docs/resources/xml.md.erb +10 -0
data/docs/resources/yaml.md.erb +10 -0
data/docs/resources/yum.md.erb +10 -0
data/docs/resources/zfs_dataset.md.erb +10 -0
data/docs/resources/zfs_pool.md.erb +10 -0
data/lib/inspec/base_cli.rb +2 -2
data/lib/inspec/cli.rb +3 -2
data/lib/inspec/resource.rb +2 -0
data/lib/inspec/runner.rb +2 -4
data/lib/inspec/version.rb +1 -1
data/lib/resource_support/aws.rb +1 -0
data/lib/resources/aws/aws_ecs_cluster.rb +84 -0
data/lib/resources/aws/aws_route_table.rb +3 -3
data/lib/resources/docker.rb +34 -0
data/lib/resources/docker_plugin.rb +63 -0
data/lib/resources/iis_app_pool.rb +116 -0
metadata +6 -2

data/docs/resources/aws_iam_password_policy.md.erb CHANGED

@@ -9,6 +9,16 @@ Use the `aws_iam_password_policy` InSpec audit resource to test properties of th
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_iam_password_policy` resource block takes no parameters. Several properties and matchers are available.

data/docs/resources/aws_iam_policies.md.erb CHANGED

@@ -13,6 +13,16 @@ Each IAM Policy is uniquely identified by either its `policy_name` or `arn`.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_iam_policies` resource block collects a group of IAM Policies and then tests that group.

data/docs/resources/aws_iam_policy.md.erb CHANGED

@@ -13,6 +13,16 @@ Each IAM Policy is uniquely identified by either its policy\_name or arn.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_iam_policy` resource block identifies a policy by policy name.

data/docs/resources/aws_iam_role.md.erb CHANGED

@@ -9,6 +9,16 @@ Use the `aws_iam_role` InSpec audit resource to test properties of a single IAM
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
     # Ensure that a certain role exists by name

data/docs/resources/aws_iam_root_user.md.erb CHANGED

@@ -13,6 +13,16 @@ To test properties of a specific AWS user use the `aws_iam_user` resource.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_iam_root_user` resource block requires no parameters but has several matchers.

data/docs/resources/aws_iam_user.md.erb CHANGED

@@ -13,6 +13,16 @@ To test properties of the special AWS root user (which owns the account), use th
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Resource Parameters
 An `aws_iam_user` resource block declares a user by name, and then lists tests to be performed.

data/docs/resources/aws_iam_users.md.erb CHANGED

@@ -13,6 +13,16 @@ To test properties of the special AWS root user (which owns the account), use th
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_iam_users` resource block uses a filter to select a group of users and then tests that group. With no filter, it returns all AWS IAM users.

data/docs/resources/aws_kms_key.md.erb CHANGED

@@ -14,6 +14,16 @@ Each AWS KMS Key is uniquely identified by its key_id or arn.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.21 of InSpec.
 ## Syntax
 An aws_kms_key resource block identifies a key by key_arn or the key id.

data/docs/resources/aws_kms_keys.md.erb CHANGED

@@ -15,6 +15,16 @@ Each AWS KMS Key is uniquely identified by its key-id or key-arn.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_kms_keys` resource block uses an optional filter to select a group of KMS Keys and then tests that group.

data/docs/resources/aws_rds_instance.md.erb CHANGED

@@ -10,6 +10,16 @@ RDS gives you access to the capabilities of a MySQL, MariaDB, PostgreSQL, Micros
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.21 of InSpec.
 ## Syntax
 An `aws_rds_instance` resource block uses resource parameters to search for an RDS instance, and then tests that RDS instance.  If no RDS instances match, no error is raised, but the `exists` matcher will return `false` and all properties will be `nil`.  If more than one RDS instance matches (due to vague search parameters), an error is raised.

data/docs/resources/aws_route_table.md.erb CHANGED

@@ -9,6 +9,16 @@ Use the `aws_route_table` InSpec audit resource to test properties of a single R
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
     # Ensure that a certain route table exists by name

data/docs/resources/aws_route_tables.md.erb CHANGED

@@ -8,6 +8,16 @@ Use the `aws_route_tables` InSpec audit resource to test properties of all or a
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.30 of InSpec.
 ## Syntax
   # Ensure that there is at least one route table

data/docs/resources/aws_s3_bucket.md.erb CHANGED

@@ -21,6 +21,16 @@ In particular, users of the `be_public` matcher should carefully examine the con
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_s3_bucket` resource block declares a bucket by name, and then lists tests to be performed.

data/docs/resources/aws_s3_bucket_object.md.erb CHANGED

@@ -17,6 +17,16 @@ S3 object security is a complex matter.  For details on how AWS evaluates reques
 As of January 2018, this resource supports evaluating S3 Object ACLs. In particular, users of the `be_public` matcher should carefully examine the conditions under which the matcher will detect an insecure bucket.  See the `be_public` section under the Matchers section below.
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.10 of InSpec.
 ## Syntax
 An `aws_s3_bucket_object` resource block declares a bucket and an object key by name, and then lists tests to be performed.

data/docs/resources/aws_s3_buckets.md.erb CHANGED

@@ -10,6 +10,16 @@ Use the `aws_s3_bucket` InSpec audit resource to perform in-depth auditing of a
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.30 of InSpec.
 ## Syntax
 An `aws_s3_buckets` resource block takes no arguments

data/docs/resources/aws_security_group.md.erb CHANGED

@@ -18,6 +18,16 @@ While this resource provides facilities for searching inbound and outbound rules
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 Resource parameters: group_id, group_name, id, vpc_id

data/docs/resources/aws_security_groups.md.erb CHANGED

@@ -11,6 +11,16 @@ Security groups are a networking construct that contain ingress and egress rules
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_security_groups` resource block uses an optional filter to select a group of security groups and then tests that group.

data/docs/resources/aws_sns_subscription.md.erb CHANGED

@@ -8,6 +8,16 @@ Use the `aws_sns_subscription` InSpec audit resource to test detailed properties
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.10 of InSpec.
 ## Syntax
 An `aws_sns_subscription` resource block uses resource parameters to search for a SNS Subscription, and then tests that subscriptions properties.  If no Subscriptions match, no error is raised, but the `exists` matcher will return `false` and all properties will be `nil`.

data/docs/resources/aws_sns_topic.md.erb CHANGED

@@ -8,6 +8,16 @@ Use the `aws_sns_topic` InSpec audit resource to test properties of a single AWS
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
     # Ensure that a topic exists and has at least one subscription

data/docs/resources/aws_sns_topics.md.erb CHANGED

@@ -9,6 +9,16 @@ User the 'aws_sns_topic' InSpec audit resource to test a single SNS Topic in an
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.10 of InSpec.
 ## Syntax
 An `aws_sns_topics` resource block takes no filter conditions.

data/docs/resources/aws_subnet.md.erb CHANGED

@@ -13,6 +13,16 @@ To test properties of all or a group of VPC subnets, use the `aws_subnets` resou
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_subnet` resource block uses the parameter to select a VPC and a subnet in the VPC.

data/docs/resources/aws_subnets.md.erb CHANGED

@@ -13,6 +13,16 @@ Separating IP addresses allows for protection if there is a failure in one avail
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_subnets` resource block uses an optional filter to select a group of subnets and then tests that group.

data/docs/resources/aws_vpc.md.erb CHANGED

@@ -17,6 +17,16 @@ Every AWS account has at least one VPC, the "default" VPC, in every region.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_vpc` resource block identifies a VPC by id. If no VPC ID is provided, the default VPC is used.

data/docs/resources/aws_vpcs.md.erb CHANGED

@@ -15,6 +15,16 @@ Every AWS account has at least one VPC, the "default" VPC, in every region.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_vpcs` resource block uses an optional filter to select a group of VPCs and then tests that group.

data/docs/resources/azure_generic_resource.md.erb CHANGED

@@ -8,6 +8,16 @@ title: About the azure_generic_resource Resource
 Use the `azure_generic_resource` InSpec audit resource to test any valid Azure Resource. This is very useful if you need to test something that we do not yet have a specific Inspec resource for.
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
     describe azure_generic_resource(group_name: 'MyResourceGroup', name: 'MyResource') do

data/docs/resources/azure_resource_group.md.erb CHANGED

@@ -7,6 +7,16 @@ platform: azure
 Use the `azure_resource_group_resource_counts` InSpec audit resource to check the number of Azure resources in a resource group.
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 The name of the resource group is specified as a parameter on the resource: