inspec 1.24.0 → 1.25.0

checksums.yaml

@@ -1,7 +1,7 @@
 ---
 SHA1:
-  metadata.gz: cf386497cc64b702dd9554fadcad59d66758a5cd
-  data.tar.gz: 8c03d98784bd5163c4ac0f39855595c1f3016960
+  metadata.gz: 5261cd0fb515b9d1f811b7f5f64240bb621a3a45
+  data.tar.gz: a5db8a92f9fa823f77f3e5606228e24401143d1e
 SHA512:
-  metadata.gz: 55f55fc7ec4d7557d546c27a64b6de6f079fe019141066ab7762a08892de76141df480670bcf525a152fdd539c0d2b91c409f960471af037f8f81a72aaf4ce1e
-  data.tar.gz: a8957f05de8b17c042dc77cc5e1f179fd38b74b0b4d4485b68e2d24c800829299c995b66a48ae06fc4baa90125e4f6d6ce75616b6a70aa34c1c0283f0822573c
+  metadata.gz: 6e3be0aa353c6a58aa1be91c5c327c2eba93ce2d634919ebc60ff4252775a308b07c7190a897d82f1c3027baff643e6d558f0f8eb6d880264b8679d67fcc775f
+  data.tar.gz: e13a9c5266af39ba0ab44b4d64337d798b94f08a1b3b0aafd39625322bf1eeebc3e6ee917e56c1c48e0003750cb019c82b7b76b78d45bbd67cedb5333bf91c34

data/CHANGELOG.md

@@ -1,5 +1,18 @@
 # Change Log
 
+## [v1.25.0](https://github.com/chef/inspec/tree/v1.25.0) (2017-05-17)
+[Full Changelog](https://github.com/chef/inspec/compare/v1.24.0...v1.25.0)
+
+**Implemented enhancements:**
+
+- return version as json [\#1822](https://github.com/chef/inspec/pull/1822) ([chris-rock](https://github.com/chris-rock))
+- support new automate compliance backend [\#1819](https://github.com/chef/inspec/pull/1819) ([chris-rock](https://github.com/chris-rock))
+
+**Fixed bugs:**
+
+- read source code if profile is in tgz/zip [\#1816](https://github.com/chef/inspec/pull/1816) ([arlimus](https://github.com/arlimus))
+- Update postgresql conf resource to accept include\_dir as a string as well as an array [\#1727](https://github.com/chef/inspec/pull/1727) ([elliott-davis](https://github.com/elliott-davis))
+
 ## [v1.24.0](https://github.com/chef/inspec/tree/v1.24.0) (2017-05-11)
 [Full Changelog](https://github.com/chef/inspec/compare/v1.23.0...v1.24.0)
 
@@ -13,7 +26,7 @@
 - Add support for Windows auth in mssql\_resourcet [\#1786](https://github.com/chef/inspec/pull/1786) ([arlimus](https://github.com/arlimus))
 - Allow mysql\_session to test databases on different hosts [\#1779](https://github.com/chef/inspec/pull/1779) ([aaronlippold](https://github.com/aaronlippold))
 - Handle parse errors for attrs/secrets [\#1775](https://github.com/chef/inspec/pull/1775) ([adamleff](https://github.com/adamleff))
-- Add an oracle\_session resource [\#1751](https://github.com/chef/inspec/pull/1751) ([nsdavidson](https://github.com/nsdavidson))
+- Add an oracledb\_session resource [\#1751](https://github.com/chef/inspec/pull/1751) ([nsdavidson](https://github.com/nsdavidson))
 
 ## [v1.23.0](https://github.com/chef/inspec/tree/v1.23.0) (2017-05-04)
 [Full Changelog](https://github.com/chef/inspec/compare/v1.22.0...v1.23.0)

data/docs/profiles.md

@@ -101,12 +101,9 @@ and to target all of these examples in a single `inspec.yml` file:
     name: ssh
     supports:
       - os-name: debian
-    supports:
       - os-name: ubuntu
         release: 14.04
-    supports:
       - os-family: redhat
-    supports:
       - platform: aws
 
 

data/lib/bundles/inspec-compliance/api.rb

@@ -6,12 +6,24 @@ require 'net/http'
 require 'uri'
 
 module Compliance
+  class ServerConfigurationMissing < StandardError
+  end
+
   # API Implementation does not hold any state by itself,
   # everything will be stored in local Configuration store
   class API # rubocop:disable Metrics/ClassLength
     # return all compliance profiles available for the user
     def self.profiles(config)
-      config['server_type'] == 'automate' ? url = "#{config['server']}/#{config['user']}" : url = "#{config['server']}/user/compliance"
+      # Chef Compliance
+      if is_compliance_server?(config)
+        url = "#{config['server']}/user/compliance"
+      # Chef Automate
+      elsif is_automate_server?(config)
+        url = "#{config['server']}/profiles/#{config['user']}"
+      else
+        raise ServerConfigurationMissing
+      end
+
       headers = get_headers(config)
       response = Compliance::HTTP.get(url, headers, config['insecure'])
       data = response.body
@@ -21,15 +33,21 @@ module Compliance
         msg = 'success'
         profiles = JSON.parse(data)
         # iterate over profiles
-        if config['server_type'] == 'automate'
-          mapped_profiles = profiles.values.to_a.flatten
-        else
+        if is_compliance_server?(config)
           mapped_profiles = []
           profiles.values.each { |org|
             mapped_profiles += org.values
           }
+        # Chef Automate pre 0.8.0
+        elsif is_automate_server_pre_080?(config)
+          mapped_profiles = profiles.values.flatten
+        else
+          owner_id = config['user']
+          mapped_profiles = profiles.map { |e|
+            e['owner_id'] = owner_id
+            e
+          }
         end
-
         return msg, mapped_profiles
       when '401'
         msg = '401 Unauthorized. Please check your token.'
@@ -43,16 +61,17 @@ module Compliance
     # return the server api version
     # NB this method does not use Compliance::Configuration to allow for using
     # it before we know the version (e.g. oidc or not)
-    def self.version(url, insecure)
-      if url.nil?
-        puts "
-Server configuration information is missing.
-Please login using `inspec compliance login https://compliance.test --user admin --insecure --token 'PASTE TOKEN HERE' `
-"
-      else
-        response = Compliance::HTTP.get(url+'/version', nil, insecure)
-        data = response.body
-      end
+    def self.version(config)
+      url = config['server']
+      insecure = config['insecure']
+
+      raise ServerConfigurationMissing if url.nil?
+
+      headers = get_headers(config)
+      response = Compliance::HTTP.get(url+'/version', headers, insecure)
+      return {} if response.code == '404'
+      data = response.body
+
       if !data.nil?
         JSON.parse(data)
       else
@@ -72,8 +91,17 @@ Please login using `inspec compliance login https://compliance.test --user admin
     end
 
     def self.upload(config, owner, profile_name, archive_path)
-      # upload the tar to Chef Compliance
-      config['server_type'] == 'automate' ? url = "#{config['server']}/#{config['user']}" : url = "#{config['server']}/owners/#{owner}/compliance/#{profile_name}/tar"
+      # Chef Compliance
+      if is_compliance_server?(config)
+        url = "#{config['server']}/owners/#{owner}/compliance/#{profile_name}/tar"
+      # Chef Automate pre 0.8.0
+      elsif is_automate_server_pre_080?(config)
+        url = "#{config['server']}/#{config['user']}"
+      # Chef Automate
+      else
+        url = "#{config['server']}/profiles/#{config['user']}"
+      end
+
       headers = get_headers(config)
       res = Compliance::HTTP.post_file(url, headers, archive_path, config['insecure'])
       [res.is_a?(Net::HTTPSuccess), res.body]
@@ -129,7 +157,7 @@ Please login using `inspec compliance login https://compliance.test --user admin
 
     def self.get_headers(config)
       token = get_token(config)
-      if config['server_type'] == 'automate'
+      if is_automate_server?(config)
         headers = { 'chef-delivery-enterprise' => config['automate']['ent'] }
         if config['automate']['token_type'] == 'dctoken'
           headers['x-data-collector-token'] = token
@@ -150,13 +178,40 @@ Please login using `inspec compliance login https://compliance.test --user admin
     end
 
     def self.target_url(config, profile)
-      if config['server_type'] == 'automate'
-        target = "#{config['server']}/#{profile}/tar"
+      if is_automate_server?(config)
+        owner, id = profile.split('/')
+        target = "#{config['server']}/profiles/#{owner}/#{id}/tar"
       else
         owner, id = profile.split('/')
         target = "#{config['server']}/owners/#{owner}/compliance/#{id}/tar"
       end
       target
     end
+
+    # returns a parsed url for `admin/profile` or `compliance://admin/profile`
+    def self.sanitize_profile_name(profile)
+      if URI(profile).scheme == 'compliance'
+        uri = URI(profile)
+      else
+        uri = URI("compliance://#{profile}")
+      end
+      uri.to_s.sub(%r{^compliance:\/\/}, '')
+    end
+
+    def self.is_compliance_server?(config)
+      config['server_type'] == 'compliance'
+    end
+
+    def self.is_automate_server_pre_080?(config)
+      config['server_type'] == 'automate' && config['version'].empty?
+    end
+
+    def self.is_automate_server_080_and_later?(config)
+      config['server_type'] == 'automate' && !config['version'].empty?
+    end
+
+    def self.is_automate_server?(config)
+      config['server_type'] == 'automate'
+    end
   end
 end

data/lib/bundles/inspec-compliance/cli.rb

@@ -77,7 +77,7 @@ module Compliance
       desc: 'Explicitly allows InSpec to perform "insecure" SSL connections and transfers'
     def login_automate(server) # rubocop:disable Metrics/AbcSize
       options['server'] = server
-      url = options['server'] + '/compliance/profiles'
+      url = options['server'] + '/compliance'
 
       if url && !options['user'].nil? && !options['ent'].nil? && (!options['dctoken'].nil? || !options['usertoken'].nil?)
         msg = login_automate_config(url, options['user'], options['dctoken'], options['usertoken'], options['ent'], options['insecure'])
@@ -110,6 +110,9 @@ module Compliance
         puts msg, 'Could not find any profiles'
         exit 1
       end
+    rescue Compliance::ServerConfigurationMissing
+      puts "\nServer configuration information is missing. Please login using `inspec compliance login`"
+      exit 1
     end
 
     desc 'exec PROFILE', 'executes a Chef Compliance profile'
@@ -118,7 +121,7 @@ module Compliance
       config = Compliance::Configuration.new
       return if !loggedin(config)
       # iterate over tests and add compliance scheme
-      tests = tests.map { |t| 'compliance://' + sanitize_profile_name(t) }
+      tests = tests.map { |t| 'compliance://' + Compliance::API.sanitize_profile_name(t) }
       # execute profile from inspec exec implementation
       diagnose
       run_tests(tests, opts)
@@ -134,7 +137,7 @@ module Compliance
       config = Compliance::Configuration.new
       return if !loggedin(config)
 
-      profile_name = sanitize_profile_name(profile_name)
+      profile_name = Compliance::API.sanitize_profile_name(profile_name)
       if Compliance::API.exist?(config, profile_name)
         puts "Downloading `#{profile_name}`"
 
@@ -221,7 +224,7 @@ module Compliance
       puts "Start upload to #{owner}/#{profile_name}"
       pname = ERB::Util.url_encode(profile_name)
 
-      config['server_type'] == 'automate' ? upload_msg = 'Uploading to Chef Automate' : upload_msg = 'Uploading to Chef Compliance'
+      Compliance::API.is_automate_server?(config) ? upload_msg = 'Uploading to Chef Automate' : upload_msg = 'Uploading to Chef Compliance'
       puts upload_msg
       success, msg = Compliance::API.upload(config, owner, pname, archive_path)
 
@@ -237,17 +240,17 @@ module Compliance
     desc 'version', 'displays the version of the Chef Compliance server'
     def version
       config = Compliance::Configuration.new
-      if config['server_type'] == 'automate'
-        puts 'Version not available when logged in with Automate.'
+      info = Compliance::API.version(config)
+      if !info.nil? && info['version']
+        puts "Name:    #{info['api']}"
+        puts "Version: #{info['version']}"
       else
-        info = Compliance::API.version(config['server'], config['insecure'])
-        if !info.nil? && info['version']
-          puts "Chef Compliance version: #{info['version']}"
-        else
-          puts 'Could not determine server version.'
-          exit 1
-        end
+        puts 'Could not determine server version.'
+        exit 1
       end
+    rescue Compliance::ServerConfigurationMissing
+      puts "\nServer configuration information is missing. Please login using `inspec compliance login`"
+      exit 1
     end
 
     desc 'logout', 'user logout from Chef Compliance'
@@ -269,18 +272,9 @@ module Compliance
 
     private
 
-    # returns a parsed url for `admin/profile` or `compliance://admin/profile`
-    def sanitize_profile_name(profile)
-      if URI(profile).scheme == 'compliance'
-        uri = URI(profile)
-      else
-        uri = URI("compliance://#{profile}")
-      end
-      uri.host + uri.path
-    end
-
     def login_automate_config(url, user, dctoken, usertoken, ent, insecure) # rubocop:disable Metrics/ParameterLists
       config = Compliance::Configuration.new
+      config.clean
       config['user'] = user
       config['server'] = url
       config['automate'] = {}
@@ -298,8 +292,8 @@ module Compliance
         token_type = 'usertoken'
         token_msg = 'automate user token'
       end
-
       config['automate']['token_type'] = token_type
+      config['version'] = Compliance::API.version(config)
       config.store
       msg = "Stored configuration for Chef Automate: '#{url}' with user: '#{user}', ent: '#{ent}' and your #{token_msg}"
       msg
@@ -309,10 +303,11 @@ module Compliance
       success, msg, _access_token = Compliance::API.get_token_via_refresh_token(url, options['refresh_token'], options['insecure'])
       if success
         config = Compliance::Configuration.new
+        config.clean
         config['server'] = url
         config['insecure'] = options['insecure']
-        config['version'] = Compliance::API.version(url, options['insecure'])
         config['server_type'] = 'compliance'
+        config['version'] = Compliance::API.version(config)
         config.store
       end
 
@@ -321,14 +316,15 @@ module Compliance
 
     def login_username_password(url, username, password, insecure)
       config = Compliance::Configuration.new
+      config.clean
       success, msg, api_token = Compliance::API.get_token_via_password(url, username, password, insecure)
       if success
         config['server'] = url
         config['user'] = username
         config['token'] = api_token
         config['insecure'] = insecure
-        config['version'] = Compliance::API.version(url, insecure)
         config['server_type'] = 'compliance'
+        config['version'] = Compliance::API.version(config)
         config.store
         success = true
       end
@@ -338,11 +334,13 @@ module Compliance
     # saves a user access token (limited time)
     def store_access_token(url, user, token, insecure)
       config = Compliance::Configuration.new
+      config.clean
       config['server'] = url
       config['insecure'] = insecure
       config['user'] = user
       config['token'] = token
-      config['version'] = Compliance::API.version(url, insecure)
+      config['server_type'] = 'compliance'
+      config['version'] = Compliance::API.version(config)
       config.store
 
       [true, 'API access token stored']
@@ -351,10 +349,12 @@ module Compliance
     # saves a refresh token supplied by the user
     def store_refresh_token(url, refresh_token, verify, user, insecure)
       config = Compliance::Configuration.new
+      config.clean
       config['server'] = url
       config['refresh_token'] = refresh_token
       config['user'] = user
       config['insecure'] = insecure
+      config['server_type'] = 'compliance'
       config['version'] = Compliance::API.version(url, insecure)
 
       if !verify

data/lib/bundles/inspec-compliance/configuration.rb

@@ -28,6 +28,10 @@ module Compliance
       @config[key] = value
     end
 
+    def clean
+      @config = {}
+    end
+
     # return the json data
     def get
       if File.exist?(@config_file)

data/lib/bundles/inspec-compliance/target.rb

@@ -13,7 +13,7 @@ module Compliance
   class Fetcher < Fetchers::Url
     name 'compliance'
     priority 500
-    def self.resolve(target) # rubocop:disable PerceivedComplexity, Metrics/CyclomaticComplexity, Metrics/AbcSize
+    def self.resolve(target) # rubocop:disable PerceivedComplexity, Metrics/CyclomaticComplexity
       uri = if target.is_a?(String) && URI(target).scheme == 'compliance'
               URI(target)
             elsif target.respond_to?(:key?) && target.key?(:compliance)
@@ -49,7 +49,7 @@ EOF
         end
 
         # verifies that the target e.g base/ssh exists
-        profile = uri.host + uri.path
+        profile = Compliance::API.sanitize_profile_name(uri)
         if !Compliance::API.exist?(config, profile)
           raise Inspec::FetcherFailure, "The compliance profile #{profile} was not found on the configured compliance server"
         end
@@ -57,7 +57,6 @@ EOF
       end
       # We need to pass the token to the fetcher
       config['token'] = Compliance::API.get_token(config)
-
       new(profile_fetch_url, config)
     rescue URI::Error => _e
       nil
@@ -81,8 +80,10 @@ EOF
 
     # determine the owner_id and the profile name from the url
     def compliance_profile_name
-      m = if @config['server_type'] == 'automate'
+      m = if Compliance::API.is_automate_server_pre_080(@config)
             %r{^#{@config['server']}/(?<owner>[^/]+)/(?<id>[^/]+)/tar$}
+          elsif Compliance::API.is_automate_server_080_and_later
+            %r{^#{@config['server']}/profiles/(?<owner>[^/]+)/(?<id>[^/]+)/tar$}
           else
             %r{^#{@config['server']}/owners/(?<owner>[^/]+)/compliance/(?<id>[^/]+)/tar$}
           end.match(@target)

data/lib/inspec/cli.rb

@@ -238,12 +238,18 @@ class Inspec::InspecCLI < Inspec::BaseCLI # rubocop:disable Metrics/ClassLength
   end
 
   desc 'version', 'prints the version of this tool'
+  option :format, type: :string
   def version
-    puts Inspec::VERSION
-    # display outdated version
-    latest = LatestInSpecVersion.new.latest
-    if Gem::Version.new(Inspec::VERSION) < Gem::Version.new(latest)
-      puts "\nYour version of InSpec is out of date! The latest version is #{latest}."
+    if opts['format'] == 'json'
+      v = { version: Inspec::VERSION }
+      puts v.to_json
+    else
+      puts Inspec::VERSION
+      # display outdated version
+      latest = LatestInSpecVersion.new.latest
+      if Gem::Version.new(Inspec::VERSION) < Gem::Version.new(latest)
+        puts "\nYour version of InSpec is out of date! The latest version is #{latest}."
+      end
     end
   end
   map %w{-v --version} => :version

data/lib/inspec/method_source.rb

@@ -0,0 +1,24 @@
+# encoding: utf-8
+# author: Dominik Richter
+# author: Christoph Hartmann
+
+module Inspec
+  module MethodSource
+    def self.code_at(location, source_reader)
+      # TODO: logger for these cases
+      return '' if location.nil? || location[:ref].nil? || location[:line].nil?
+      return '' unless source_reader && source_reader.target
+
+      # TODO: Non-controls still need more detection
+      ref = location[:ref]
+      ref = ref.sub(source_reader.target.prefix, '')
+      src = source_reader.tests[ref]
+      return '' if src.nil?
+
+      ::MethodSource.expression_at(src.lines, location[:line]).force_encoding('utf-8')
+    rescue SyntaxError => e
+      raise ::MethodSource::SourceNotFoundError,
+            "Could not parse source at #{location[:ref]}:#{location[:line]}: #{e.message}"
+    end
+  end
+end

data/lib/inspec/profile.rb

@@ -15,6 +15,7 @@ require 'inspec/rule'
 require 'inspec/log'
 require 'inspec/profile_context'
 require 'inspec/runtime_profile'
+require 'inspec/method_source'
 require 'inspec/dependencies/cache'
 require 'inspec/dependencies/lockfile'
 require 'inspec/dependencies/dependency_set'
@@ -471,6 +472,7 @@ module Inspec
 
     def load_rule(rule, file, controls, groups)
       id = Inspec::Rule.rule_id(rule)
+      location = rule.instance_variable_get(:@__source_location)
       controls[id] = {
         title: rule.title,
         desc: rule.desc,
@@ -478,8 +480,8 @@ module Inspec
         refs: rule.ref,
         tags: rule.tag,
         checks: Inspec::Rule.checks(rule),
-        code: rule.instance_variable_get(:@__code),
-        source_location: rule.instance_variable_get(:@__source_location),
+        code: Inspec::MethodSource.code_at(location, source_reader),
+        source_location: location,
       }
 
       groups[file] ||= {

data/lib/inspec/rule.rb

@@ -39,7 +39,6 @@ module Inspec
 
       # not changeable by the user:
       @__block = block
-      @__code = __get_block_source(&block)
       @__source_location = __get_block_source_location(&block)
       @__rule_id = id
       @__profile_id = profile_id
@@ -249,14 +248,6 @@ module Inspec
       text.gsub(/^[[:blank:]]{#{len}}/, '').strip
     end
 
-    # get the rule's source code
-    def __get_block_source(&block)
-      return '' unless block_given?
-      block.source.to_s
-    rescue MethodSource::SourceNotFoundError
-      ''
-    end
-
     # get the source location of the block
     def __get_block_source_location(&block)
       return {} unless block_given?

data/lib/inspec/version.rb

@@ -4,5 +4,5 @@
 # author: Christoph Hartmann
 
 module Inspec
-  VERSION = '1.24.0'.freeze
+  VERSION = '1.25.0'.freeze
 end

data/lib/resources/postgres_conf.rb

@@ -93,7 +93,7 @@ module Inspec::Resources
     def include_files(params)
       include_files = params['include'] || []
       include_files += params['include_if_exists'] || []
-      dirs = params['include_dir'] || []
+      dirs = Array(params['include_dir']) || []
       dirs.each do |dir|
         dir = File.join(@conf_dir, dir) if dir[0] != '/'
         include_files += find_files(dir, depth: 1, type: 'file')

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: inspec
 version: !ruby/object:Gem::Version
-  version: 1.24.0
+  version: 1.25.0
 platform: ruby
 authors:
 - Dominik Richter
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2017-05-11 00:00:00.000000000 Z
+date: 2017-05-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: train
@@ -289,7 +289,7 @@ files:
 - docs/inspec_and_friends.md
 - docs/matchers.md
 - docs/migration.md
-- docs/plugin_kitchen_inspec.html.md
+- docs/plugin_kitchen_inspec.md
 - docs/profiles.md
 - docs/resources.md
 - docs/resources/apache_conf.md.erb
@@ -383,7 +383,6 @@ files:
 - examples/README.md
 - examples/inheritance/README.md
 - examples/inheritance/controls/example.rb
-- examples/inheritance/inspec.lock
 - examples/inheritance/inspec.yml
 - examples/kitchen-ansible/.kitchen.yml
 - examples/kitchen-ansible/Gemfile
@@ -409,11 +408,7 @@ files:
 - examples/kitchen-puppet/test/integration/default/web_spec.rb
 - examples/meta-profile/README.md
 - examples/meta-profile/controls/example.rb
-- examples/meta-profile/inspec.lock
 - examples/meta-profile/inspec.yml
-- examples/meta-profile/vendor/4d5c9187409941b96f00fb25d0888c301ede999fd63149f35ad4594d698d6535.tar.gz
-- examples/meta-profile/vendor/79e6b9846ab539669bbfcf5adcd246f1be484d4b55acb7c1c3dbd852203e4fae.tar.gz
-- examples/meta-profile/vendor/dbb5602f09f58d86f8743dfb44327207e9a23a49ef34f65614f1c1d8cc145f6b.tar.gz
 - examples/profile-attribute.yml
 - examples/profile-attribute/README.md
 - examples/profile-attribute/controls/example.rb
@@ -489,6 +484,7 @@ files:
 - lib/inspec/library_eval_context.rb
 - lib/inspec/log.rb
 - lib/inspec/metadata.rb
+- lib/inspec/method_source.rb
 - lib/inspec/objects.rb
 - lib/inspec/objects/attribute.rb
 - lib/inspec/objects/control.rb

data/examples/inheritance/inspec.lock

@@ -1,11 +0,0 @@
----
-lockfile_version: 1
-depends:
-- name: profile
-  resolved_source:
-    path: "/Users/aleff/projects/inspec/examples/profile"
-  version_constraints: ">= 0"
-- name: profile-attribute
-  resolved_source:
-    path: "/Users/aleff/projects/inspec/examples/profile-attribute"
-  version_constraints: ">= 0"

data/examples/meta-profile/inspec.lock

@@ -1,18 +0,0 @@
----
-lockfile_version: 1
-depends:
-- name: dev-sec/ssh-baseline
-  resolved_source:
-    url: https://github.com/dev-sec/ssh-baseline/archive/master.tar.gz
-    sha256: 79e6b9846ab539669bbfcf5adcd246f1be484d4b55acb7c1c3dbd852203e4fae
-  version_constraints: ">= 0"
-- name: ssl-benchmark
-  resolved_source:
-    url: https://github.com/dev-sec/ssl-benchmark/archive/master.tar.gz
-    sha256: 4d5c9187409941b96f00fb25d0888c301ede999fd63149f35ad4594d698d6535
-  version_constraints: ">= 0"
-- name: windows-patch-benchmark
-  resolved_source:
-    url: https://github.com/chris-rock/windows-patch-benchmark/archive/master.tar.gz
-    sha256: dbb5602f09f58d86f8743dfb44327207e9a23a49ef34f65614f1c1d8cc145f6b
-  version_constraints: ">= 0"