RubyGems - inspec - Versions diffs - 2.3.10 → 2.3.23 - Mend

inspec 2.3.10 → 2.3.23

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (271) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +34 -13
data/etc/plugin_filters.json +25 -0
data/inspec.gemspec +3 -3
data/lib/bundles/inspec-compliance/api.rb +3 -0
data/lib/bundles/inspec-compliance/configuration.rb +3 -0
data/lib/bundles/inspec-compliance/http.rb +3 -0
data/lib/bundles/inspec-compliance/support.rb +3 -0
data/lib/bundles/inspec-compliance/target.rb +3 -0
data/lib/inspec/objects/attribute.rb +3 -0
data/lib/inspec/plugin/v2.rb +3 -0
data/lib/inspec/plugin/v2/filter.rb +62 -0
data/lib/inspec/plugin/v2/installer.rb +21 -1
data/lib/inspec/plugin/v2/loader.rb +4 -0
data/lib/inspec/profile.rb +3 -1
data/lib/inspec/version.rb +1 -1
data/lib/plugins/inspec-plugin-manager-cli/lib/inspec-plugin-manager-cli/cli_command.rb +25 -3
data/lib/plugins/inspec-plugin-manager-cli/test/functional/inspec-plugin_test.rb +65 -11
data/lib/plugins/inspec-plugin-manager-cli/test/unit/cli_args_test.rb +5 -1
data/lib/resources/package.rb +1 -1
metadata +5 -253
data/MAINTAINERS.toml +0 -52
data/docs/.gitignore +0 -2
data/docs/README.md +0 -41
data/docs/dev/control-eval.md +0 -62
data/docs/dev/filtertable-internals.md +0 -353
data/docs/dev/filtertable-usage.md +0 -533
data/docs/dev/integration-testing.md +0 -31
data/docs/dev/plugins.md +0 -323
data/docs/dsl_inspec.md +0 -354
data/docs/dsl_resource.md +0 -100
data/docs/glossary.md +0 -381
data/docs/habitat.md +0 -193
data/docs/inspec_and_friends.md +0 -114
data/docs/matchers.md +0 -161
data/docs/migration.md +0 -293
data/docs/platforms.md +0 -119
data/docs/plugin_kitchen_inspec.md +0 -60
data/docs/plugins.md +0 -57
data/docs/profiles.md +0 -576
data/docs/reporters.md +0 -170
data/docs/resources/aide_conf.md.erb +0 -86
data/docs/resources/apache.md.erb +0 -77
data/docs/resources/apache_conf.md.erb +0 -78
data/docs/resources/apt.md.erb +0 -81
data/docs/resources/audit_policy.md.erb +0 -57
data/docs/resources/auditd.md.erb +0 -89
data/docs/resources/auditd_conf.md.erb +0 -78
data/docs/resources/aws_cloudtrail_trail.md.erb +0 -165
data/docs/resources/aws_cloudtrail_trails.md.erb +0 -96
data/docs/resources/aws_cloudwatch_alarm.md.erb +0 -101
data/docs/resources/aws_cloudwatch_log_metric_filter.md.erb +0 -164
data/docs/resources/aws_config_delivery_channel.md.erb +0 -111
data/docs/resources/aws_config_recorder.md.erb +0 -96
data/docs/resources/aws_ebs_volume.md.erb +0 -76
data/docs/resources/aws_ebs_volumes.md.erb +0 -86
data/docs/resources/aws_ec2_instance.md.erb +0 -122
data/docs/resources/aws_ec2_instances.md.erb +0 -89
data/docs/resources/aws_elb.md.erb +0 -154
data/docs/resources/aws_elbs.md.erb +0 -252
data/docs/resources/aws_flow_log.md.erb +0 -128
data/docs/resources/aws_iam_access_key.md.erb +0 -139
data/docs/resources/aws_iam_access_keys.md.erb +0 -214
data/docs/resources/aws_iam_group.md.erb +0 -74
data/docs/resources/aws_iam_groups.md.erb +0 -92
data/docs/resources/aws_iam_password_policy.md.erb +0 -92
data/docs/resources/aws_iam_policies.md.erb +0 -97
data/docs/resources/aws_iam_policy.md.erb +0 -264
data/docs/resources/aws_iam_role.md.erb +0 -79
data/docs/resources/aws_iam_root_user.md.erb +0 -86
data/docs/resources/aws_iam_user.md.erb +0 -130
data/docs/resources/aws_iam_users.md.erb +0 -289
data/docs/resources/aws_kms_key.md.erb +0 -187
data/docs/resources/aws_kms_keys.md.erb +0 -99
data/docs/resources/aws_rds_instance.md.erb +0 -76
data/docs/resources/aws_route_table.md.erb +0 -63
data/docs/resources/aws_route_tables.md.erb +0 -65
data/docs/resources/aws_s3_bucket.md.erb +0 -156
data/docs/resources/aws_s3_bucket_object.md.erb +0 -99
data/docs/resources/aws_s3_buckets.md.erb +0 -69
data/docs/resources/aws_security_group.md.erb +0 -323
data/docs/resources/aws_security_groups.md.erb +0 -107
data/docs/resources/aws_sns_subscription.md.erb +0 -140
data/docs/resources/aws_sns_topic.md.erb +0 -79
data/docs/resources/aws_sns_topics.md.erb +0 -68
data/docs/resources/aws_subnet.md.erb +0 -150
data/docs/resources/aws_subnets.md.erb +0 -142
data/docs/resources/aws_vpc.md.erb +0 -135
data/docs/resources/aws_vpcs.md.erb +0 -135
data/docs/resources/azure_generic_resource.md.erb +0 -183
data/docs/resources/azure_resource_group.md.erb +0 -294
data/docs/resources/azure_virtual_machine.md.erb +0 -357
data/docs/resources/azure_virtual_machine_data_disk.md.erb +0 -234
data/docs/resources/bash.md.erb +0 -85
data/docs/resources/bond.md.erb +0 -100
data/docs/resources/bridge.md.erb +0 -67
data/docs/resources/bsd_service.md.erb +0 -77
data/docs/resources/chocolatey_package.md.erb +0 -68
data/docs/resources/command.md.erb +0 -176
data/docs/resources/cpan.md.erb +0 -89
data/docs/resources/cran.md.erb +0 -74
data/docs/resources/crontab.md.erb +0 -103
data/docs/resources/csv.md.erb +0 -64
data/docs/resources/dh_params.md.erb +0 -221
data/docs/resources/directory.md.erb +0 -40
data/docs/resources/docker.md.erb +0 -240
data/docs/resources/docker_container.md.erb +0 -113
data/docs/resources/docker_image.md.erb +0 -104
data/docs/resources/docker_plugin.md.erb +0 -80
data/docs/resources/docker_service.md.erb +0 -124
data/docs/resources/elasticsearch.md.erb +0 -252
data/docs/resources/etc_fstab.md.erb +0 -135
data/docs/resources/etc_group.md.erb +0 -85
data/docs/resources/etc_hosts.md.erb +0 -88
data/docs/resources/etc_hosts_allow.md.erb +0 -84
data/docs/resources/etc_hosts_deny.md.erb +0 -84
data/docs/resources/file.md.erb +0 -543
data/docs/resources/filesystem.md.erb +0 -51
data/docs/resources/firewalld.md.erb +0 -117
data/docs/resources/gem.md.erb +0 -108
data/docs/resources/group.md.erb +0 -71
data/docs/resources/grub_conf.md.erb +0 -111
data/docs/resources/host.md.erb +0 -96
data/docs/resources/http.md.erb +0 -207
data/docs/resources/iis_app.md.erb +0 -132
data/docs/resources/iis_site.md.erb +0 -145
data/docs/resources/inetd_conf.md.erb +0 -104
data/docs/resources/ini.md.erb +0 -86
data/docs/resources/interface.md.erb +0 -68
data/docs/resources/iptables.md.erb +0 -74
data/docs/resources/json.md.erb +0 -73
data/docs/resources/kernel_module.md.erb +0 -130
data/docs/resources/kernel_parameter.md.erb +0 -63
data/docs/resources/key_rsa.md.erb +0 -95
data/docs/resources/launchd_service.md.erb +0 -67
data/docs/resources/limits_conf.md.erb +0 -85
data/docs/resources/login_defs.md.erb +0 -81
data/docs/resources/mount.md.erb +0 -79
data/docs/resources/mssql_session.md.erb +0 -78
data/docs/resources/mysql_conf.md.erb +0 -109
data/docs/resources/mysql_session.md.erb +0 -84
data/docs/resources/nginx.md.erb +0 -89
data/docs/resources/nginx_conf.md.erb +0 -148
data/docs/resources/npm.md.erb +0 -78
data/docs/resources/ntp_conf.md.erb +0 -70
data/docs/resources/oneget.md.erb +0 -63
data/docs/resources/oracledb_session.md.erb +0 -103
data/docs/resources/os.md.erb +0 -153
data/docs/resources/os_env.md.erb +0 -101
data/docs/resources/package.md.erb +0 -130
data/docs/resources/packages.md.erb +0 -77
data/docs/resources/parse_config.md.erb +0 -113
data/docs/resources/parse_config_file.md.erb +0 -148
data/docs/resources/passwd.md.erb +0 -151
data/docs/resources/pip.md.erb +0 -77
data/docs/resources/port.md.erb +0 -147
data/docs/resources/postgres_conf.md.erb +0 -89
data/docs/resources/postgres_hba_conf.md.erb +0 -103
data/docs/resources/postgres_ident_conf.md.erb +0 -86
data/docs/resources/postgres_session.md.erb +0 -79
data/docs/resources/powershell.md.erb +0 -112
data/docs/resources/processes.md.erb +0 -119
data/docs/resources/rabbitmq_config.md.erb +0 -51
data/docs/resources/registry_key.md.erb +0 -197
data/docs/resources/runit_service.md.erb +0 -67
data/docs/resources/security_policy.md.erb +0 -57
data/docs/resources/service.md.erb +0 -131
data/docs/resources/shadow.md.erb +0 -267
data/docs/resources/ssh_config.md.erb +0 -83
data/docs/resources/sshd_config.md.erb +0 -93
data/docs/resources/ssl.md.erb +0 -129
data/docs/resources/sys_info.md.erb +0 -52
data/docs/resources/systemd_service.md.erb +0 -67
data/docs/resources/sysv_service.md.erb +0 -67
data/docs/resources/upstart_service.md.erb +0 -67
data/docs/resources/user.md.erb +0 -150
data/docs/resources/users.md.erb +0 -137
data/docs/resources/vbscript.md.erb +0 -65
data/docs/resources/virtualization.md.erb +0 -67
data/docs/resources/windows_feature.md.erb +0 -69
data/docs/resources/windows_hotfix.md.erb +0 -63
data/docs/resources/windows_task.md.erb +0 -95
data/docs/resources/wmi.md.erb +0 -91
data/docs/resources/x509_certificate.md.erb +0 -161
data/docs/resources/xinetd_conf.md.erb +0 -166
data/docs/resources/xml.md.erb +0 -95
data/docs/resources/yaml.md.erb +0 -79
data/docs/resources/yum.md.erb +0 -108
data/docs/resources/zfs_dataset.md.erb +0 -63
data/docs/resources/zfs_pool.md.erb +0 -57
data/docs/shared/matcher_be.md.erb +0 -1
data/docs/shared/matcher_cmp.md.erb +0 -43
data/docs/shared/matcher_eq.md.erb +0 -3
data/docs/shared/matcher_include.md.erb +0 -1
data/docs/shared/matcher_match.md.erb +0 -1
data/docs/shell.md +0 -217
data/docs/style.md +0 -178
data/examples/README.md +0 -8
data/examples/custom-resource/README.md +0 -3
data/examples/custom-resource/controls/example.rb +0 -7
data/examples/custom-resource/inspec.yml +0 -8
data/examples/custom-resource/libraries/batsignal.rb +0 -20
data/examples/custom-resource/libraries/gordon.rb +0 -21
data/examples/inheritance/README.md +0 -65
data/examples/inheritance/controls/example.rb +0 -14
data/examples/inheritance/inspec.yml +0 -16
data/examples/kitchen-ansible/.kitchen.yml +0 -25
data/examples/kitchen-ansible/Gemfile +0 -19
data/examples/kitchen-ansible/README.md +0 -53
data/examples/kitchen-ansible/files/nginx.repo +0 -6
data/examples/kitchen-ansible/tasks/main.yml +0 -16
data/examples/kitchen-ansible/test/integration/default/default.yml +0 -5
data/examples/kitchen-ansible/test/integration/default/web_spec.rb +0 -28
data/examples/kitchen-chef/.kitchen.yml +0 -20
data/examples/kitchen-chef/Berksfile +0 -3
data/examples/kitchen-chef/Gemfile +0 -19
data/examples/kitchen-chef/README.md +0 -27
data/examples/kitchen-chef/metadata.rb +0 -7
data/examples/kitchen-chef/recipes/default.rb +0 -6
data/examples/kitchen-chef/recipes/nginx.rb +0 -30
data/examples/kitchen-chef/test/integration/default/web_spec.rb +0 -28
data/examples/kitchen-puppet/.kitchen.yml +0 -23
data/examples/kitchen-puppet/Gemfile +0 -20
data/examples/kitchen-puppet/Puppetfile +0 -25
data/examples/kitchen-puppet/README.md +0 -53
data/examples/kitchen-puppet/manifests/site.pp +0 -33
data/examples/kitchen-puppet/metadata.json +0 -11
data/examples/kitchen-puppet/modules/.gitkeep +0 -0
data/examples/kitchen-puppet/test/integration/default/web_spec.rb +0 -28
data/examples/meta-profile/README.md +0 -37
data/examples/meta-profile/controls/example.rb +0 -13
data/examples/meta-profile/inspec.yml +0 -13
data/examples/plugins/inspec-resource-lister/Gemfile +0 -12
data/examples/plugins/inspec-resource-lister/LICENSE +0 -13
data/examples/plugins/inspec-resource-lister/README.md +0 -62
data/examples/plugins/inspec-resource-lister/Rakefile +0 -40
data/examples/plugins/inspec-resource-lister/inspec-resource-lister.gemspec +0 -45
data/examples/plugins/inspec-resource-lister/lib/inspec-resource-lister.rb +0 -16
data/examples/plugins/inspec-resource-lister/lib/inspec-resource-lister/cli_command.rb +0 -70
data/examples/plugins/inspec-resource-lister/lib/inspec-resource-lister/plugin.rb +0 -55
data/examples/plugins/inspec-resource-lister/lib/inspec-resource-lister/version.rb +0 -10
data/examples/plugins/inspec-resource-lister/test/fixtures/README.md +0 -24
data/examples/plugins/inspec-resource-lister/test/functional/README.md +0 -18
data/examples/plugins/inspec-resource-lister/test/functional/inspec_resource_lister_test.rb +0 -110
data/examples/plugins/inspec-resource-lister/test/helper.rb +0 -26
data/examples/plugins/inspec-resource-lister/test/unit/README.md +0 -17
data/examples/plugins/inspec-resource-lister/test/unit/cli_args_test.rb +0 -64
data/examples/plugins/inspec-resource-lister/test/unit/plugin_def_test.rb +0 -51
data/examples/profile-attribute.yml +0 -2
data/examples/profile-attribute/README.md +0 -14
data/examples/profile-attribute/controls/example.rb +0 -11
data/examples/profile-attribute/inspec.yml +0 -8
data/examples/profile-aws/controls/iam_password_policy_expiration.rb +0 -8
data/examples/profile-aws/controls/iam_password_policy_max_age.rb +0 -8
data/examples/profile-aws/controls/iam_root_user_mfa.rb +0 -8
data/examples/profile-aws/controls/iam_users_access_key_age.rb +0 -8
data/examples/profile-aws/controls/iam_users_console_users_mfa.rb +0 -8
data/examples/profile-aws/inspec.yml +0 -11
data/examples/profile-azure/controls/azure_resource_group_example.rb +0 -24
data/examples/profile-azure/controls/azure_vm_example.rb +0 -29
data/examples/profile-azure/inspec.yml +0 -11
data/examples/profile-sensitive/README.md +0 -29
data/examples/profile-sensitive/controls/sensitive-failures.rb +0 -9
data/examples/profile-sensitive/controls/sensitive.rb +0 -9
data/examples/profile-sensitive/inspec.yml +0 -8
data/examples/profile/README.md +0 -48
data/examples/profile/controls/example.rb +0 -24
data/examples/profile/controls/gordon.rb +0 -36
data/examples/profile/controls/meta.rb +0 -36
data/examples/profile/inspec.yml +0 -11
data/examples/profile/libraries/gordon_config.rb +0 -59

data/examples/profile/controls/example.rb DELETED Viewed

@@ -1,24 +0,0 @@
-# encoding: utf-8
-# copyright: 2015, Chef Software, Inc.
-title '/tmp profile'
-# you add controls here
-control "tmp-1.0" do                                   # A unique ID for this control
-  impact 0.7                                           # The criticality, if this control fails.
-  title "Create /tmp directory"                        # A human-readable title
-  desc "An optional description..."                    # Describe why this is needed
-  desc "label", "An optional description with a label" # Pair a part of the description with a label
-  tag data: "temp data"                                # A tag allows you to associate key information
-  tag "security"                                       # to the test
-  ref "Document A-12", url: 'http://...'               # Additional references
-  describe file('/tmp') do                             # The actual test
-    it { should be_directory }
-  end
-end
-# you can also use plain tests
-describe file('/tmp') do
-  it { should be_directory }
-end

data/examples/profile/controls/gordon.rb DELETED Viewed

@@ -1,36 +0,0 @@
-# encoding: utf-8
-# copyright: 2016, Chef Software, Inc.
-title 'Gordon Config Checks'
-# To pass the test, create the following file
-# ```bash
-# mkdir -p /tmp/gordon
-# cat <<EOF > /tmp/gordon/config.yaml
-# version: '1.0'
-# EOF
-# ```
-control 'gordon-1.0' do
-  impact 'critical'
-  title 'Verify the version number of Gordon'
-  desc 'An optional description...'
-  tag 'gordon'
-  ref 'Gordon Requirements 1.0', uri: 'http://...'
-  # Test using the custom gordon_config Inspec resource
-  # Find the resource content here: ../libraries/
-  describe gordon_config do
-    it { should exist }
-    its('version') { should eq('1.0') }
-    its('file_size') { should <= 20 }
-    its('comma_count') { should eq 0 }
-  end
-  # Test the version again to showcase variables
-  g = gordon_config
-  g_path = g.file_path
-  g_version = g.version
-  describe file(g_path) do
-    its('content') { should match g_version }
-  end
-end

data/examples/profile/controls/meta.rb DELETED Viewed

@@ -1,36 +0,0 @@
-title 'SSH Server Configuration'
-control 'ssh-1' do
-  impact 1.0
-  title 'Allow only SSH Protocol 2'
-  desc 'Only SSH protocol version 2 connections should be permitted.
-        The default setting in /etc/ssh/sshd_config is correct, and can be
-        verified by ensuring that the following line appears: Protocol 2'
-  tag 'production','development'
-  tag 'ssh','sshd','openssh-server'
-  tag cce: 'CCE-27072-8'
-  tag disa: 'RHEL-06-000227'
-  tag nist: 'AC-3(10).i'
-  tag nist: 'IA-5(1)'
-  tag cci: 'CCI-000776'
-  tag cci: 'CCI-000774'
-  tag cci: 'CCI-001436'
-  tag remediation: 'stig_rhel6/recipes/sshd-config.rb'
-  tag remediation: 'https://supermarket.chef.io/cookbooks/ssh-hardening'
-  ref 'NSA-RH6-STIG - Section 3.5.2.1', url: 'https://www.nsa.gov/ia/_files/os/redhat/rhel5-guide-i731.pdf'
-  ref 'DISA-RHEL6-SG - Section 9.2.1', url: 'http://iasecontent.disa.mil/stigs/zip/Jan2016/U_RedHat_6_V1R10_STIG.zip'
-  ref 'http://people.redhat.com/swells/scap-security-guide/RHEL/6/output/ssg-centos6-guide-C2S.html'
-  only_if { platform.in_family?('unix') }
-  describe file('/bin/sh') do
-    it { should be_owned_by 'root' }
-  end
-end

data/examples/profile/inspec.yml DELETED Viewed

@@ -1,11 +0,0 @@
-name: profile
-title: InSpec Example Profile
-maintainer: Chef Software, Inc.
-copyright: Chef Software, Inc.
-copyright_email: support@chef.io
-license: Apache-2.0
-summary: Demonstrates the use of InSpec Compliance Profile
-version: 1.0.0
-supports:
-  - platform-family: unix
-  - platform-family: windows

data/examples/profile/libraries/gordon_config.rb DELETED Viewed

@@ -1,59 +0,0 @@
-require 'yaml'
-# Custom resource based on the InSpec resource DSL
-class GordonConfig < Inspec.resource(1)
-  name 'gordon_config'
-  supports platform: 'unix'
-  supports platform: 'windows'
-  desc "
-    Gordon's resource description ...
-  "
-  example "
-    describe gordon_config do
-      its('version') { should eq('1.0') }
-      its('file_size') { should > 1 }
-    end
-  "
-  # Load the configuration file on initialization
-  def initialize
-    @params = {}
-    @path = '/tmp/gordon/config.yaml'
-    @file = inspec.file(@path)
-    unless @file.file?
-      raise Inspec::Exceptions::ResourceSkipped, "Can't find file `#{@path}`"
-    end
-    # Protect from invalid YAML content
-    begin
-      @params = YAML.load(@file.content)
-      # Add two extra matchers
-      @params['file_size'] = @file.size
-      @params['file_path'] = @path
-      @params['ruby'] = 'RUBY IS HERE TO HELP ME!'
-    rescue StandardError => e
-      raise Inspec::Exceptions::ResourceSkipped, "#{@file}: #{e.message}"
-    end
-  end
-  # Example method called by 'it { should exist }'
-  # Returns true or false from the 'File.exist?' method
-  def exists?
-    File.exist?(@path)
-  end
-  # Example matcher for the number of commas in the file
-  def comma_count
-    text = @file.content
-    text.count(',')
-  end
-  # Expose all parameters
-  def method_missing(name)
-    @params[name.to_s]
-  end
-end