RubyGems - inspec - Versions diffs - 2.2.55 → 2.2.61 - Mend

inspec 2.2.55 → 2.2.61

Files changed (161) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +24 -8
data/docs/resources/aide_conf.md.erb +10 -0
data/docs/resources/apache.md.erb +10 -0
data/docs/resources/apache_conf.md.erb +10 -0
data/docs/resources/apt.md.erb +10 -0
data/docs/resources/audit_policy.md.erb +10 -0
data/docs/resources/auditd.md.erb +10 -0
data/docs/resources/auditd_conf.md.erb +10 -0
data/docs/resources/aws_cloudtrail_trail.md.erb +10 -0
data/docs/resources/aws_cloudtrail_trails.md.erb +10 -0
data/docs/resources/aws_cloudwatch_alarm.md.erb +10 -0
data/docs/resources/aws_cloudwatch_log_metric_filter.md.erb +10 -0
data/docs/resources/aws_config_delivery_channel.md.erb +10 -0
data/docs/resources/aws_config_recorder.md.erb +10 -0
data/docs/resources/aws_ec2_instance.md.erb +10 -0
data/docs/resources/aws_ec2_instances.md.erb +10 -0
data/docs/resources/aws_elb.md.erb +10 -0
data/docs/resources/aws_elbs.md.erb +10 -0
data/docs/resources/aws_flow_log.md.erb +10 -0
data/docs/resources/aws_iam_access_key.md.erb +10 -0
data/docs/resources/aws_iam_access_keys.md.erb +10 -0
data/docs/resources/aws_iam_group.md.erb +10 -0
data/docs/resources/aws_iam_groups.md.erb +10 -0
data/docs/resources/aws_iam_password_policy.md.erb +10 -0
data/docs/resources/aws_iam_policies.md.erb +10 -0
data/docs/resources/aws_iam_policy.md.erb +10 -0
data/docs/resources/aws_iam_role.md.erb +10 -0
data/docs/resources/aws_iam_root_user.md.erb +10 -0
data/docs/resources/aws_iam_user.md.erb +10 -0
data/docs/resources/aws_iam_users.md.erb +10 -0
data/docs/resources/aws_kms_key.md.erb +10 -0
data/docs/resources/aws_kms_keys.md.erb +10 -0
data/docs/resources/aws_rds_instance.md.erb +10 -0
data/docs/resources/aws_route_table.md.erb +10 -0
data/docs/resources/aws_route_tables.md.erb +10 -0
data/docs/resources/aws_s3_bucket.md.erb +10 -0
data/docs/resources/aws_s3_bucket_object.md.erb +10 -0
data/docs/resources/aws_s3_buckets.md.erb +10 -0
data/docs/resources/aws_security_group.md.erb +10 -0
data/docs/resources/aws_security_groups.md.erb +10 -0
data/docs/resources/aws_sns_subscription.md.erb +10 -0
data/docs/resources/aws_sns_topic.md.erb +10 -0
data/docs/resources/aws_sns_topics.md.erb +10 -0
data/docs/resources/aws_subnet.md.erb +10 -0
data/docs/resources/aws_subnets.md.erb +10 -0
data/docs/resources/aws_vpc.md.erb +10 -0
data/docs/resources/aws_vpcs.md.erb +10 -0
data/docs/resources/azure_generic_resource.md.erb +10 -0
data/docs/resources/azure_resource_group.md.erb +10 -0
data/docs/resources/azure_virtual_machine.md.erb +10 -0
data/docs/resources/azure_virtual_machine_data_disk.md.erb +10 -0
data/docs/resources/bash.md.erb +10 -0
data/docs/resources/bond.md.erb +10 -0
data/docs/resources/bridge.md.erb +10 -0
data/docs/resources/bsd_service.md.erb +10 -0
data/docs/resources/chocolatey_package.md.erb +10 -0
data/docs/resources/command.md.erb +10 -0
data/docs/resources/cpan.md.erb +10 -0
data/docs/resources/cran.md.erb +10 -0
data/docs/resources/crontab.md.erb +10 -0
data/docs/resources/csv.md.erb +10 -0
data/docs/resources/dh_params.md.erb +10 -0
data/docs/resources/directory.md.erb +10 -0
data/docs/resources/docker.md.erb +21 -0
data/docs/resources/docker_container.md.erb +10 -0
data/docs/resources/docker_image.md.erb +10 -0
data/docs/resources/docker_plugin.md.erb +80 -0
data/docs/resources/docker_service.md.erb +10 -0
data/docs/resources/elasticsearch.md.erb +10 -0
data/docs/resources/etc_fstab.md.erb +10 -0
data/docs/resources/etc_group.md.erb +10 -0
data/docs/resources/etc_hosts.md.erb +10 -0
data/docs/resources/etc_hosts_allow.md.erb +10 -0
data/docs/resources/etc_hosts_deny.md.erb +10 -0
data/docs/resources/file.md.erb +10 -0
data/docs/resources/filesystem.md.erb +10 -0
data/docs/resources/firewalld.md.erb +10 -0
data/docs/resources/gem.md.erb +10 -0
data/docs/resources/group.md.erb +10 -0
data/docs/resources/grub_conf.md.erb +10 -0
data/docs/resources/host.md.erb +10 -0
data/docs/resources/http.md.erb +10 -0
data/docs/resources/iis_app.md.erb +10 -0
data/docs/resources/iis_site.md.erb +10 -0
data/docs/resources/inetd_conf.md.erb +10 -0
data/docs/resources/ini.md.erb +10 -0
data/docs/resources/interface.md.erb +10 -0
data/docs/resources/iptables.md.erb +10 -0
data/docs/resources/json.md.erb +10 -0
data/docs/resources/kernel_module.md.erb +10 -0
data/docs/resources/kernel_parameter.md.erb +10 -0
data/docs/resources/key_rsa.md.erb +10 -0
data/docs/resources/launchd_service.md.erb +10 -0
data/docs/resources/limits_conf.md.erb +10 -0
data/docs/resources/login_defs.md.erb +10 -0
data/docs/resources/mount.md.erb +10 -0
data/docs/resources/mssql_session.md.erb +10 -0
data/docs/resources/mysql_conf.md.erb +10 -0
data/docs/resources/mysql_session.md.erb +10 -0
data/docs/resources/nginx.md.erb +10 -0
data/docs/resources/nginx_conf.md.erb +10 -0
data/docs/resources/npm.md.erb +10 -0
data/docs/resources/ntp_conf.md.erb +10 -0
data/docs/resources/oneget.md.erb +10 -0
data/docs/resources/oracledb_session.md.erb +10 -0
data/docs/resources/os.md.erb +10 -0
data/docs/resources/os_env.md.erb +10 -0
data/docs/resources/package.md.erb +10 -0
data/docs/resources/packages.md.erb +10 -0
data/docs/resources/parse_config.md.erb +10 -0
data/docs/resources/parse_config_file.md.erb +10 -0
data/docs/resources/passwd.md.erb +10 -0
data/docs/resources/pip.md.erb +10 -0
data/docs/resources/port.md.erb +10 -0
data/docs/resources/postgres_conf.md.erb +10 -0
data/docs/resources/postgres_hba_conf.md.erb +10 -0
data/docs/resources/postgres_ident_conf.md.erb +10 -0
data/docs/resources/postgres_session.md.erb +10 -0
data/docs/resources/powershell.md.erb +10 -0
data/docs/resources/processes.md.erb +10 -0
data/docs/resources/rabbitmq_config.md.erb +10 -0
data/docs/resources/registry_key.md.erb +38 -2
data/docs/resources/runit_service.md.erb +10 -0
data/docs/resources/security_policy.md.erb +10 -0
data/docs/resources/service.md.erb +10 -0
data/docs/resources/shadow.md.erb +10 -0
data/docs/resources/ssh_config.md.erb +10 -0
data/docs/resources/sshd_config.md.erb +10 -0
data/docs/resources/ssl.md.erb +10 -0
data/docs/resources/sys_info.md.erb +10 -0
data/docs/resources/systemd_service.md.erb +10 -0
data/docs/resources/sysv_service.md.erb +10 -0
data/docs/resources/upstart_service.md.erb +10 -0
data/docs/resources/user.md.erb +10 -0
data/docs/resources/users.md.erb +10 -0
data/docs/resources/vbscript.md.erb +10 -0
data/docs/resources/virtualization.md.erb +10 -0
data/docs/resources/windows_feature.md.erb +10 -0
data/docs/resources/windows_hotfix.md.erb +10 -0
data/docs/resources/windows_task.md.erb +10 -0
data/docs/resources/wmi.md.erb +10 -0
data/docs/resources/x509_certificate.md.erb +10 -0
data/docs/resources/xinetd_conf.md.erb +10 -0
data/docs/resources/xml.md.erb +10 -0
data/docs/resources/yaml.md.erb +10 -0
data/docs/resources/yum.md.erb +10 -0
data/docs/resources/zfs_dataset.md.erb +10 -0
data/docs/resources/zfs_pool.md.erb +10 -0
data/lib/inspec/base_cli.rb +2 -2
data/lib/inspec/cli.rb +3 -2
data/lib/inspec/resource.rb +2 -0
data/lib/inspec/runner.rb +2 -4
data/lib/inspec/version.rb +1 -1
data/lib/resource_support/aws.rb +1 -0
data/lib/resources/aws/aws_ecs_cluster.rb +84 -0
data/lib/resources/aws/aws_route_table.rb +3 -3
data/lib/resources/docker.rb +34 -0
data/lib/resources/docker_plugin.rb +63 -0
data/lib/resources/iis_app_pool.rb +116 -0
metadata +6 -2

data/docs/resources/aws_iam_password_policy.md.erb CHANGED

@@ -9,6 +9,16 @@ Use the `aws_iam_password_policy` InSpec audit resource to test properties of th
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_iam_password_policy` resource block takes no parameters. Several properties and matchers are available.

data/docs/resources/aws_iam_policies.md.erb CHANGED

@@ -13,6 +13,16 @@ Each IAM Policy is uniquely identified by either its `policy_name` or `arn`.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_iam_policies` resource block collects a group of IAM Policies and then tests that group.

data/docs/resources/aws_iam_policy.md.erb CHANGED

@@ -13,6 +13,16 @@ Each IAM Policy is uniquely identified by either its policy\_name or arn.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_iam_policy` resource block identifies a policy by policy name.

data/docs/resources/aws_iam_role.md.erb CHANGED

@@ -9,6 +9,16 @@ Use the `aws_iam_role` InSpec audit resource to test properties of a single IAM
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
     # Ensure that a certain role exists by name

data/docs/resources/aws_iam_root_user.md.erb CHANGED

@@ -13,6 +13,16 @@ To test properties of a specific AWS user use the `aws_iam_user` resource.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_iam_root_user` resource block requires no parameters but has several matchers.

data/docs/resources/aws_iam_user.md.erb CHANGED

@@ -13,6 +13,16 @@ To test properties of the special AWS root user (which owns the account), use th
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Resource Parameters
 An `aws_iam_user` resource block declares a user by name, and then lists tests to be performed.

data/docs/resources/aws_iam_users.md.erb CHANGED

@@ -13,6 +13,16 @@ To test properties of the special AWS root user (which owns the account), use th
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_iam_users` resource block uses a filter to select a group of users and then tests that group. With no filter, it returns all AWS IAM users.

data/docs/resources/aws_kms_key.md.erb CHANGED

@@ -14,6 +14,16 @@ Each AWS KMS Key is uniquely identified by its key_id or arn.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.21 of InSpec.
 ## Syntax
 An aws_kms_key resource block identifies a key by key_arn or the key id.

data/docs/resources/aws_kms_keys.md.erb CHANGED

@@ -15,6 +15,16 @@ Each AWS KMS Key is uniquely identified by its key-id or key-arn.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_kms_keys` resource block uses an optional filter to select a group of KMS Keys and then tests that group.

data/docs/resources/aws_rds_instance.md.erb CHANGED

@@ -10,6 +10,16 @@ RDS gives you access to the capabilities of a MySQL, MariaDB, PostgreSQL, Micros
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.21 of InSpec.
 ## Syntax
 An `aws_rds_instance` resource block uses resource parameters to search for an RDS instance, and then tests that RDS instance.  If no RDS instances match, no error is raised, but the `exists` matcher will return `false` and all properties will be `nil`.  If more than one RDS instance matches (due to vague search parameters), an error is raised.

data/docs/resources/aws_route_table.md.erb CHANGED

@@ -9,6 +9,16 @@ Use the `aws_route_table` InSpec audit resource to test properties of a single R
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
     # Ensure that a certain route table exists by name

data/docs/resources/aws_route_tables.md.erb CHANGED

@@ -8,6 +8,16 @@ Use the `aws_route_tables` InSpec audit resource to test properties of all or a
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.30 of InSpec.
 ## Syntax
   # Ensure that there is at least one route table

data/docs/resources/aws_s3_bucket.md.erb CHANGED

@@ -21,6 +21,16 @@ In particular, users of the `be_public` matcher should carefully examine the con
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_s3_bucket` resource block declares a bucket by name, and then lists tests to be performed.

data/docs/resources/aws_s3_bucket_object.md.erb CHANGED

@@ -17,6 +17,16 @@ S3 object security is a complex matter.  For details on how AWS evaluates reques
 As of January 2018, this resource supports evaluating S3 Object ACLs. In particular, users of the `be_public` matcher should carefully examine the conditions under which the matcher will detect an insecure bucket.  See the `be_public` section under the Matchers section below.
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.10 of InSpec.
 ## Syntax
 An `aws_s3_bucket_object` resource block declares a bucket and an object key by name, and then lists tests to be performed.

data/docs/resources/aws_s3_buckets.md.erb CHANGED

@@ -10,6 +10,16 @@ Use the `aws_s3_bucket` InSpec audit resource to perform in-depth auditing of a
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.30 of InSpec.
 ## Syntax
 An `aws_s3_buckets` resource block takes no arguments

data/docs/resources/aws_security_group.md.erb CHANGED

@@ -18,6 +18,16 @@ While this resource provides facilities for searching inbound and outbound rules
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 Resource parameters: group_id, group_name, id, vpc_id

data/docs/resources/aws_security_groups.md.erb CHANGED

@@ -11,6 +11,16 @@ Security groups are a networking construct that contain ingress and egress rules
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_security_groups` resource block uses an optional filter to select a group of security groups and then tests that group.

data/docs/resources/aws_sns_subscription.md.erb CHANGED

@@ -8,6 +8,16 @@ Use the `aws_sns_subscription` InSpec audit resource to test detailed properties
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.10 of InSpec.
 ## Syntax
 An `aws_sns_subscription` resource block uses resource parameters to search for a SNS Subscription, and then tests that subscriptions properties.  If no Subscriptions match, no error is raised, but the `exists` matcher will return `false` and all properties will be `nil`.

data/docs/resources/aws_sns_topic.md.erb CHANGED

@@ -8,6 +8,16 @@ Use the `aws_sns_topic` InSpec audit resource to test properties of a single AWS
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
     # Ensure that a topic exists and has at least one subscription

data/docs/resources/aws_sns_topics.md.erb CHANGED

@@ -9,6 +9,16 @@ User the 'aws_sns_topic' InSpec audit resource to test a single SNS Topic in an
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.1.10 of InSpec.
 ## Syntax
 An `aws_sns_topics` resource block takes no filter conditions.

data/docs/resources/aws_subnet.md.erb CHANGED

@@ -13,6 +13,16 @@ To test properties of all or a group of VPC subnets, use the `aws_subnets` resou
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_subnet` resource block uses the parameter to select a VPC and a subnet in the VPC.

data/docs/resources/aws_subnets.md.erb CHANGED

@@ -13,6 +13,16 @@ Separating IP addresses allows for protection if there is a failure in one avail
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_subnets` resource block uses an optional filter to select a group of subnets and then tests that group.

data/docs/resources/aws_vpc.md.erb CHANGED

@@ -17,6 +17,16 @@ Every AWS account has at least one VPC, the "default" VPC, in every region.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_vpc` resource block identifies a VPC by id. If no VPC ID is provided, the default VPC is used.

data/docs/resources/aws_vpcs.md.erb CHANGED

@@ -15,6 +15,16 @@ Every AWS account has at least one VPC, the "default" VPC, in every region.
 <br>
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 An `aws_vpcs` resource block uses an optional filter to select a group of VPCs and then tests that group.

data/docs/resources/azure_generic_resource.md.erb CHANGED

@@ -8,6 +8,16 @@ title: About the azure_generic_resource Resource
 Use the `azure_generic_resource` InSpec audit resource to test any valid Azure Resource. This is very useful if you need to test something that we do not yet have a specific Inspec resource for.
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
     describe azure_generic_resource(group_name: 'MyResourceGroup', name: 'MyResource') do

data/docs/resources/azure_resource_group.md.erb CHANGED

@@ -7,6 +7,16 @@ platform: azure
 Use the `azure_resource_group_resource_counts` InSpec audit resource to check the number of Azure resources in a resource group.
+## Availability
+### Installation
+This resource is distributed along with InSpec itself. You can use it automatically.
+### Version
+This resource first became available in v2.0.16 of InSpec.
 ## Syntax
 The name of the resource group is specified as a parameter on the resource: