inspec 3.9.3 → 4.1.4.preview

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA256:
-  metadata.gz: 6acb1580248137e250e50e82452ca06ffbb270db5f166c206050ae8d2ce0f046
-  data.tar.gz: e6c0db990f81559518f2f39b1d9a3bafb4455ff6fa25f478c94488d1c5e3b620
+SHA1:
+  metadata.gz: 7dd53f745c6f68b24d0b987f09258c973a6d4579
+  data.tar.gz: f9b791e75517949b5007d0d6904c7d70752103b6
 SHA512:
-  metadata.gz: d379f6e0f71d1c79ced4577c381d75e0e3005c52652dc59e68486ddc20dad952067d9960187088db6713e23e81d5c226b7b1da43ff81835f6d22f23925db42b2
-  data.tar.gz: 0bdefe99c446850501e474c8391fe370266038440e866b3f6d96ddea41b8e07af9668b206452d019af678f0a7ef8e9aefe71f28536990d7755dba66b55c86709
+  metadata.gz: bcfdc38552520f03dcb738e3273d8cbee50ea35bb33d6f5f0e4bde0fae9b2b3b1dd36369b88a754fea078ddf23073400a81a914bb54468b0d573f5f471bec1e5
+  data.tar.gz: 1ee7fdfc45f33bcbf182da86da273e2634825da4b6a218750ddbf77dfc150eb5f70484df22e524dead114dc8d4656784e00f402cdb49ebb8b2ce0c646bea6d58

data/Gemfile

@@ -4,12 +4,10 @@ source 'https://rubygems.org'
 gem 'inspec', path: '.'
 
 gem 'ffi', '>= 1.9.14'
-gem 'aws-sdk', '~> 2'
 
 group :omnibus do
   gem 'rb-readline'
   gem 'appbundler'
-  gem 'unf_ext', git: 'https://github.com/chef/ruby-unf_ext.git', ref: '55d872fb15f3a26e4ee8f8dbe7ba859c80d40383'
 end
 
 group :test do
@@ -20,7 +18,7 @@ group :test do
   gem 'concurrent-ruby', '~> 1.0'
   gem 'mocha', '~> 1.1'
   gem 'ruby-progressbar', '~> 1.8'
-  gem 'webmock', '~> 2.3.2'
+  gem 'webmock', '~> 3.0'
   gem 'jsonschema', '~> 2.0.2'
   gem 'passgen'
   gem 'm'
@@ -28,10 +26,7 @@ group :test do
 end
 
 group :integration do
-  # this version check can be removed when inspec no longer support ruby 2.3
-  if Gem::Version.new(RUBY_VERSION) >= Gem::Version.new('2.4')
-    gem 'berkshelf', '~> 7'
-  end
+  gem 'berkshelf', '~> 7'
   gem 'test-kitchen', '>= 1.24'
   gem 'kitchen-vagrant'
   # we need winrm v2 support >= 0.15.1

data/README.md

@@ -46,7 +46,7 @@ inspec exec test.rb -t docker://container_id
 
 ## Installation
 
-InSpec requires Ruby ( >2.3 ).
+InSpec requires Ruby ( >= 2.4 ).
 
 ### Install as package
 
@@ -454,4 +454,3 @@ distributed under the License is distributed on an "AS IS" BASIS,
 WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 See the License for the specific language governing permissions and
 limitations under the License.
-

data/etc/deprecations.json

@@ -6,24 +6,106 @@
       "action": "ignore",
       "prefix": "The 'default' option for attributes is being replaced by 'value' - please use it instead."
     },
+    "aws_resources_in_resource_pack": {
+      "comment": "See #3822",
+      "action": "ignore",
+      "prefix": "AWS resources shipped with core InSpec are being to moved to a resource pack for faster iteration. Please update your profiles to depend on git@github.com:inspec/inspec-aws.git ."
+    },
     "cli_option_json_config": {
       "action": "ignore",
       "prefix": "The --json-config option is being replaced by the --config option.",
       "comment": "See #3661"
     },
-    "filesystem_property_size": {
+    "file_resource_be_mounted_matchers": {
+      "action": "warn",
+      "suffix": "This will not be supported in InSpec 4.0."
+    },
+    "host_resource_proto_usage": {
+      "action": "warn",
+      "suffix": "This will not be supported in InSpec 4.0."
+    },
+    "inspec_ui_methods": {
+      "action": "ignore",
+      "suffix": "Please call `cli.ui` directly",
+      "comment": "See #3715"
+    },
+    "mssql_session_pass_option": {
+      "action": "warn",
+      "suffix": "This will not be supported in InSpec 4.0."
+    },
+    "oracledb_session_pass_option": {
+      "action": "warn",
+      "suffix": "This will not be supported in InSpec 4.0."
+    },
+    "property_filesystem_size": {
       "action": "ignore",
       "comment": "See #3778"
     },
+    "property_processes_list": {
+      "action": "warn",
+      "suffix": "This property will be removed in InSpec 4.0."
+    },
+    "properties_aws_iam_user": {
+      "action": "warn",
+      "suffix": "This property will be removed in InSpec 4.0."
+    },
+    "properties_shadow": {
+      "action": "warn",
+      "suffix": "This property will be removed in InSpec 4.0."
+    },
     "rename_attributes_to_inputs": {
       "action": "ignore",
       "prefix": "InSpec Attributes are being renamed to InSpec Inputs to avoid confusion with Chef Attributes.",
       "comment": "See #3802"
     },
-    "aws_resources_in_resource_pack": {
-      "comment": "See #3822",
-      "action": "ignore",
-      "prefix": "AWS resources shipped with core InSpec are being to moved to a resource pack for faster iteration. Please update your profiles to depend on git@github.com:inspec/inspec-aws.git ."
+    "resource_apache": {
+      "action": "warn",
+      "suffix": "This resource will be removed in InSpec 4.0."
+    },
+    "resource_azure_generic_resource": {
+      "action": "warn",
+      "prefix": "The azure_generic_resource is deprecated. Please use a specific resource. See: 'https://github.com/inspec/inspec/issues/3131'"
+    },
+    "resource_iis_website": {
+      "action": "warn",
+      "suffix": "This resource will be removed in InSpec 4.0.",
+      "comment": "Needed for ServerSpec compatibility"
+    },
+    "resource_linux_kernel_parameter": {
+      "action": "warn",
+      "suffix": "This resource will be removed in InSpec 4.0.",
+      "comment": "Needed for ServerSpec compatibility"
+    },
+    "resource_ppa": {
+      "action": "warn",
+      "suffix": "This resource will be removed in InSpec 4.0.",
+      "comment": "Needed for ServerSpec compatibility"
+    },
+    "resource_script": {
+      "action": "warn",
+      "suffix": "This resource will be removed in InSpec 4.0"
+    },
+    "resource_user_serverspec_compat": {
+      "action": "warn"
+    },
+    "resource_windows_registry_key": {
+      "action": "warn",
+      "suffix": "This resource will be removed in InSpec 4.0.",
+      "comment": "Needed for ServerSpec compatibility"
+    },
+    "serverspec_compatibility": {
+      "action": "warn",
+      "suffix": "This is only allowed for compatibility with ServerSpec"
+    },
+    "supports_syntax": {
+      "action": "warn"
+    },
+    "mount_parser_serverspec_compat": {
+      "action": "warn"
+    },
+    "wmi_non_hash_usage": {
+      "action": "warn",
+      "suffix": "This property will be removed in InSpec 4.0."
     }
   }
-}
+}

data/inspec.gemspec

@@ -23,13 +23,15 @@ Gem::Specification.new do |spec|
                            .reject { |f| File.directory?(f) || f =~ %r{lib/plugins/.*/test/} }
   spec.require_paths = ['lib']
 
-  spec.required_ruby_version = '>= 2.3'
+  spec.required_ruby_version = '>= 2.4'
 
-  spec.add_dependency 'train', '~> 1.5', '>= 1.7.2'
+  spec.add_dependency 'train', '~> 2.0' # Inspec 4 must have train 2+
   # Train plugins we ship with InSpec
   spec.add_dependency 'train-habitat', '~> 0.1'
+  spec.add_dependency 'train-aws', '~> 0.1'
 
   # Implementation dependencies
+  spec.add_dependency 'license-acceptance', '~> 0.2'
   spec.add_dependency 'thor', '~> 0.20'
   spec.add_dependency 'json', '>= 1.8', '< 3.0'
   spec.add_dependency 'method_source', '~> 0.8'

data/lib/inspec/base_cli.rb

@@ -164,28 +164,28 @@ module Inspec
       end
 
       def mark_text(text)
-        # TODO: - deprecate, call cli.ui directly
+        Inspec.deprecate(:inspec_ui_methods)
         # Note that this one doesn't automatically print
         ui.emphasis(text, print: false)
       end
 
       def headline(title)
-        # TODO: - deprecate, call cli.ui directly
+        Inspec.deprecate(:inspec_ui_methods)
         ui.headline(title)
       end
 
       def li(entry)
-        # TODO: - deprecate, call cli.ui directly
+        Inspec.deprecate(:inspec_ui_methods)
         ui.list_item(entry)
       end
 
       def plain_text(msg)
-        # TODO: - deprecate, call cli.ui directly
+        Inspec.deprecate(:inspec_ui_methods)
         ui.plain(msg + "\n")
       end
 
       def exit(code)
-        # TODO: - deprecate, call cli.ui directly
+        Inspec.deprecate(:inspec_ui_methods)
         ui.exit code
       end
     end

data/lib/inspec/cli.rb

@@ -39,6 +39,9 @@ class Inspec::InspecCLI < Inspec::BaseCLI
   class_option :disable_user_plugins, type: :string, banner: '',
     desc: 'Disable loading all plugins that the user installed.'
 
+  require 'license_acceptance/cli_flags/thor'
+  include LicenseAcceptance::CLIFlags::Thor
+
   desc 'json PATH', 'read all tests in PATH and generate a JSON summary'
   option :output, aliases: :o, type: :string,
     desc: 'Save the created profile to a path'
@@ -196,6 +199,7 @@ class Inspec::InspecCLI < Inspec::BaseCLI
         3  Fatal deprecation encountered
       100  Normal exit, at least one test failed
       101  Normal exit, at least one test skipped but none failed
+      172  Chef License not accepted
     ```
 
     Below are some examples of using `exec` with different test LOCATIONS:
@@ -373,18 +377,44 @@ class Inspec::InspecCLI < Inspec::BaseCLI
   end
 end
 
+#=====================================================================#
+#                        Pre-Flight Code
+#=====================================================================#
+
+help_commands = ['-h', '--help', 'help']
+version_commands = ['-v', '--version', 'version']
+commands_exempt_from_license_check = help_commands + version_commands
+
+#---------------------------------------------------------------------#
+# EULA acceptance
+#---------------------------------------------------------------------#
+require 'license_acceptance/acceptor'
 begin
-  # Handle help commands
-  # This allows you to use any of the normal help commands after the normal args.
-  help_commands = ['-h', '--help', 'help']
-  (help_commands & ARGV).each do |cmd|
-    # move the help argument to one place behind the end for Thor to digest
-    if ARGV.size > 1
-      match = ARGV.delete(cmd)
-      ARGV.insert(-2, match)
-    end
+  if (commands_exempt_from_license_check & ARGV.map(&:downcase)).empty? &&  # Did they use a non-exempt command?
+     !ARGV.empty?                                                           # Did they supply at least one command?
+    LicenseAcceptance::Acceptor.check_and_persist('inspec', Inspec::VERSION)
   end
+rescue LicenseAcceptance::LicenseNotAcceptedError
+  Inspec::Log.error 'InSpec cannot execute without accepting the license'
+  Inspec::UI.new.exit(:license_not_accepted)
+end
 
+#---------------------------------------------------------------------#
+# Adjustments for help handling
+# This allows you to use any of the normal help commands after the normal args.
+#---------------------------------------------------------------------#
+(help_commands & ARGV).each do |cmd|
+  # move the help argument to one place behind the end for Thor to digest
+  if ARGV.size > 1
+    match = ARGV.delete(cmd)
+    ARGV.insert(-2, match)
+  end
+end
+
+#---------------------------------------------------------------------#
+# Plugin Loading
+#---------------------------------------------------------------------#
+begin
   # Load v2 plugins.  Manually check for plugin disablement.
   omit_core = ARGV.delete('--disable-core-plugins')
   omit_user = ARGV.delete('--disable-user-plugins')

data/lib/inspec/config.rb

@@ -197,7 +197,7 @@ module Inspec
 
     def check_for_piped_config(cli_opts)
       cli_opt = cli_opts[:config] || cli_opts[:json_config]
-      Inspec.deprecate(:cli_option_json_config, '') if cli_opts.key?(:json_config)
+      Inspec.deprecate(:cli_option_json_config) if cli_opts.key?(:json_config)
 
       return nil unless cli_opt
       return nil unless cli_opt == '-'
@@ -209,7 +209,7 @@ module Inspec
 
     def determine_cfg_path(cli_opts)
       path = cli_opts[:config] || cli_opts[:json_config]
-      Inspec.deprecate(:cli_option_json_config, '') if cli_opts.key?(:json_config)
+      Inspec.deprecate(:cli_option_json_config) if cli_opts.key?(:json_config)
 
       if path.nil?
         default_path = File.join(Inspec.config_dir, 'config.json')

data/lib/inspec/metadata.rb

@@ -149,11 +149,9 @@ module Inspec
         nil
       when nil then nil
       else
-        logger ||= Logger.new(nil)
-        logger.warn(
-          "Do not use deprecated `supports: #{x}` syntax. Instead use:\n"\
-          "supports:\n  - os-family: #{x}\n\n",
-        )
+        Inspec.deprecate(:supports_syntax,
+                         "Do not use deprecated `supports: #{x}` syntax. Instead use:\n"\
+                         "supports:\n  - os-family: #{x}\n\n")
         { :'os-family' => x } # rubocop:disable Style/HashSyntax
       end
     end

data/lib/inspec/plugin/v1/plugin_types/resource.rb

@@ -147,7 +147,10 @@ module Inspec
       end
 
       # rubocop:enable Lint/NestedMethodDefinition
-      if __resource_registry.key?(name)
+
+      # Warn if a resource pack is overwriting a core resource.
+      # Suppress warning if the resource is an AWS resource, see #3822
+      if __resource_registry.key?(name) && !name.start_with?('aws_')
         Inspec::Log.warn("Overwriting resource #{name}. To reference a specific version of #{name} use the resource() method")
       end
       __resource_registry[name] = cl

data/lib/inspec/ui.rb

@@ -33,6 +33,7 @@ module Inspec
     EXIT_USAGE_ERROR = 1
     EXIT_PLUGIN_ERROR = 2
     EXIT_FATAL_DEPRECATION = 3
+    EXIT_LICENSE_NOT_ACCEPTED = 172
     EXIT_FAILED_TESTS = 100
     EXIT_SKIPPED_TESTS = 101
 

data/lib/inspec/version.rb

@@ -1,8 +1,3 @@
-# encoding: utf-8
-# frozen_string_literal: true
-# author: Dominik Richter
-# author: Christoph Hartmann
-
 module Inspec
-  VERSION = '3.9.3'
+  VERSION = '4.1.4.preview'.freeze
 end

data/lib/matchers/matchers.rb

@@ -107,6 +107,7 @@ end
 # Deprecated: You should not use this matcher anymore
 RSpec::Matchers.define :be_running do
   match do |service|
+    Inspec.deprecate(:serverspec_compatibility, 'The service `be_running?` matcher is deprecated.')
     service.running? == true
   end
 

data/lib/plugins/inspec-init/templates/profiles/aws/README.md

@@ -5,50 +5,188 @@ This example shows the implementation of an InSpec profile for AWS.
 ##  Create a profile 
 
 ```
-$ inspec init profile --platform aws aws-security
-Create new profile at /Users/liamcaproni/aws-security
- * Create directory libraries
- * Create file README.md
- * Create directory controls
- * Create file controls/example.rb
- * Create file inspec.yml
- * Create file attributes.yml
- * Create file libraries/.gitkeep 
+$ inspec init profile --platform aws my-profile
+
+ ─────────────────────────── InSpec Code Generator ───────────────────────────
+
+Creating new profile at /Users/spaterson/my-profile
+ • Creating directory libraries
+ • Creating file README.md
+ • Creating directory controls
+ • Creating file controls/example.rb
+ • Creating file inspec.yml
+ • Creating file attributes.yml
+ • Creating file libraries/.gitkeep
  
 ```
 
-## Update `attributes.yml` to point to your custom VPC
+## Optionally update `attributes.yml` to point to your custom VPC
 
 ```
 aws_vpc_id: 'custom-vpc-id'
 ```
 
+The related control will simply be skipped if this is not provided.  See the [InSpec DSL documentation](https://www.inspec.io/docs/reference/dsl_inspec/) for more details on conditional execution using `only_if`.
+
 ## Run the tests
 
+### With a VPC Identifier
+
+With a supplied VPC identifier in `attributes.yml` both of the example controls will run.  The 'aws-single-vpc-exists-check' control will only check for a VPC identifier in the currently configured AWS SDK region e.g. `eu-west-2` in the below:
+
+```
+$ cd my-profile/
+$ inspec exec . -t aws://  --attrs attributes.yml
+
+Profile: AWS InSpec Profile (my-profile)
+Version: 0.1.0
+Target:  aws://eu-west-2
+
+  ✔  aws-single-vpc-exists-check: Check to see if custom VPC exists.
+     ✔  VPC vpc-1ea06476 should exist
+  ✔  aws-vpcs-check: Check in all the VPCs for default sg not allowing 22 inwards
+     ✔  EC2 Security Group sg-067cd21e928c3a2f1 should allow in {:port=>22}
+     ✔  EC2 Security Group sg-9bb3b9f3 should allow in {:port=>22}
+  ✔  aws-vpcs-multi-region-status-check: Check AWS VPCs in all regions have status "available"
+     ✔  VPC vpc-6458b70d in eu-north-1 should exist
+     ✔  VPC vpc-6458b70d in eu-north-1 should be available
+     ✔  VPC vpc-8d1390e5 in ap-south-1 should exist
+     ✔  VPC vpc-8d1390e5 in ap-south-1 should be available
+     ✔  VPC vpc-07a71d6e in eu-west-3 should exist
+     ✔  VPC vpc-07a71d6e in eu-west-3 should be available
+     ✔  VPC vpc-021630e2e767412b5 in eu-west-2 should exist
+     ✔  VPC vpc-021630e2e767412b5 in eu-west-2 should be available
+     ✔  VPC vpc-1ea06476 in eu-west-2 should exist
+     ✔  VPC vpc-1ea06476 in eu-west-2 should be available
+     ✔  VPC vpc-169dee70 in eu-west-1 should exist
+     ✔  VPC vpc-169dee70 in eu-west-1 should be available
+     ✔  VPC vpc-01ac7ba0be447a1c4 in eu-west-1 should exist
+     ✔  VPC vpc-01ac7ba0be447a1c4 in eu-west-1 should be available
+     ✔  VPC vpc-09ff83d71da9d2b6e in eu-west-1 should exist
+     ✔  VPC vpc-09ff83d71da9d2b6e in eu-west-1 should be available
+     ✔  VPC vpc-0ebccac2337a90f13 in eu-west-1 should exist
+     ✔  VPC vpc-0ebccac2337a90f13 in eu-west-1 should be available
+     ✔  VPC vpc-c2a53da4 in eu-west-1 should exist
+     ✔  VPC vpc-c2a53da4 in eu-west-1 should be available
+     ✔  VPC vpc-4fb3f127 in ap-northeast-2 should exist
+     ✔  VPC vpc-4fb3f127 in ap-northeast-2 should be available
+     ✔  VPC vpc-0804856f in ap-northeast-1 should exist
+     ✔  VPC vpc-0804856f in ap-northeast-1 should be available
+     ✔  VPC vpc-ccb917ab in sa-east-1 should exist
+     ✔  VPC vpc-ccb917ab in sa-east-1 should be available
+     ✔  VPC vpc-0afcc60c70a30a615 in ca-central-1 should exist
+     ✔  VPC vpc-0afcc60c70a30a615 in ca-central-1 should be available
+     ✔  VPC vpc-20a25048 in ca-central-1 should exist
+     ✔  VPC vpc-20a25048 in ca-central-1 should be available
+     ✔  VPC vpc-5896143f in ap-southeast-1 should exist
+     ✔  VPC vpc-5896143f in ap-southeast-1 should be available
+     ✔  VPC vpc-47972220 in ap-southeast-2 should exist
+     ✔  VPC vpc-47972220 in ap-southeast-2 should be available
+     ✔  VPC vpc-071b6f0c69d1d0311 in eu-central-1 should exist
+     ✔  VPC vpc-071b6f0c69d1d0311 in eu-central-1 should be available
+     ✔  VPC vpc-807dfdeb in eu-central-1 should exist
+     ✔  VPC vpc-807dfdeb in eu-central-1 should be available
+     ✔  VPC vpc-0be54a71311bc362d in eu-central-1 should exist
+     ✔  VPC vpc-0be54a71311bc362d in eu-central-1 should be available
+     ✔  VPC vpc-f060cd8b in us-east-1 should exist
+     ✔  VPC vpc-f060cd8b in us-east-1 should be available
+     ✔  VPC vpc-0c3a7e116c58d714b in us-east-1 should exist
+     ✔  VPC vpc-0c3a7e116c58d714b in us-east-1 should be available
+     ✔  VPC vpc-047bff6c in us-east-2 should exist
+     ✔  VPC vpc-047bff6c in us-east-2 should be available
+     ✔  VPC vpc-93dd6ef4 in us-west-1 should exist
+     ✔  VPC vpc-93dd6ef4 in us-west-1 should be available
+     ✔  VPC vpc-2c0a6a55 in us-west-2 should exist
+     ✔  VPC vpc-2c0a6a55 in us-west-2 should be available
+
+
+Profile: Amazon Web Services  Resource Pack (inspec-aws)
+Version: 0.1.0
+Target:  aws://eu-west-2
+
+     No tests executed.
+
+Profile Summary: 3 successful controls, 0 control failures, 0 controls skipped
+Test Summary: 53 successful, 0 failures, 0 skipped
+```
+
+
+### Without Supplying a VPC Identifier 
+
+If no VPC identifier is supplied, the 'aws-single-vpc-exists-check' control is skipped and the other control runs.  The `attributes.yml` file does not have to be specified to InSpec in this case.
+
 ```
-$ cd aws-profile/
-$ inspec exec -t aws://eu-west-1/test-iam-profile  --attrs attributes.yml aws-security
+$ cd my-profile/
+$ inspec exec . -t aws://  
 
-Profile: InSpec Profile (aws-security)
+Profile: AWS InSpec Profile (my-profile)
 Version: 0.1.0
 Target:  aws://eu-west-2
 
-  ✔  aws-vpc-check: Check to see if custom VPC exists.
-     ✔  VPC vpc-0014dad216b7664e3 should exist
+  ↺  aws-single-vpc-exists-check: Check to see if custom VPC exists.
+     ↺  Skipped control due to only_if condition.
   ✔  aws-vpcs-check: Check in all the VPCs for default sg not allowing 22 inwards
-     ✔  EC2 Security Group sg-05cd285a7499ee2bf should allow in {:port=>22}
-     ✔  EC2 Security Group sg-0f0faf6d01eafc65d should allow in {:port=>22}
-     ✔  EC2 Security Group sg-0cb134808cb42f188 should allow in {:port=>22}
-     ✔  EC2 Security Group sg-06b2ae6dea43e32b6 should allow in {:port=>22}
-     ✔  EC2 Security Group sg-0fc81264868480768 should allow in {:port=>22}
-     ✔  EC2 Security Group sg-0cc3c94d414fdcd1b should allow in {:port=>22}
-     ✔  EC2 Security Group sg-0abe7f61 should allow in {:port=>22}
-     ✔  EC2 Security Group sg-0f346bed179f1e6ad should allow in {:port=>22}
-     ✔  EC2 Security Group sg-0ff737c3be7a370ab should allow in {:port=>22}
-     ✔  EC2 Security Group sg-0f37838285d37d035 should allow in {:port=>22}
-     ✔  EC2 Security Group sg-001651d64991000f7 should allow in {:port=>22}
+     ✔  EC2 Security Group sg-067cd21e928c3a2f1 should allow in {:port=>22}
+     ✔  EC2 Security Group sg-9bb3b9f3 should allow in {:port=>22}
+  ✔  aws-vpcs-multi-region-status-check: Check AWS VPCs in all regions have status "available"
+     ✔  VPC vpc-6458b70d in eu-north-1 should exist
+     ✔  VPC vpc-6458b70d in eu-north-1 should be available
+     ✔  VPC vpc-8d1390e5 in ap-south-1 should exist
+     ✔  VPC vpc-8d1390e5 in ap-south-1 should be available
+     ✔  VPC vpc-07a71d6e in eu-west-3 should exist
+     ✔  VPC vpc-07a71d6e in eu-west-3 should be available
+     ✔  VPC vpc-021630e2e767412b5 in eu-west-2 should exist
+     ✔  VPC vpc-021630e2e767412b5 in eu-west-2 should be available
+     ✔  VPC vpc-1ea06476 in eu-west-2 should exist
+     ✔  VPC vpc-1ea06476 in eu-west-2 should be available
+     ✔  VPC vpc-169dee70 in eu-west-1 should exist
+     ✔  VPC vpc-169dee70 in eu-west-1 should be available
+     ✔  VPC vpc-01ac7ba0be447a1c4 in eu-west-1 should exist
+     ✔  VPC vpc-01ac7ba0be447a1c4 in eu-west-1 should be available
+     ✔  VPC vpc-09ff83d71da9d2b6e in eu-west-1 should exist
+     ✔  VPC vpc-09ff83d71da9d2b6e in eu-west-1 should be available
+     ✔  VPC vpc-0ebccac2337a90f13 in eu-west-1 should exist
+     ✔  VPC vpc-0ebccac2337a90f13 in eu-west-1 should be available
+     ✔  VPC vpc-c2a53da4 in eu-west-1 should exist
+     ✔  VPC vpc-c2a53da4 in eu-west-1 should be available
+     ✔  VPC vpc-4fb3f127 in ap-northeast-2 should exist
+     ✔  VPC vpc-4fb3f127 in ap-northeast-2 should be available
+     ✔  VPC vpc-0804856f in ap-northeast-1 should exist
+     ✔  VPC vpc-0804856f in ap-northeast-1 should be available
+     ✔  VPC vpc-ccb917ab in sa-east-1 should exist
+     ✔  VPC vpc-ccb917ab in sa-east-1 should be available
+     ✔  VPC vpc-0afcc60c70a30a615 in ca-central-1 should exist
+     ✔  VPC vpc-0afcc60c70a30a615 in ca-central-1 should be available
+     ✔  VPC vpc-20a25048 in ca-central-1 should exist
+     ✔  VPC vpc-20a25048 in ca-central-1 should be available
+     ✔  VPC vpc-5896143f in ap-southeast-1 should exist
+     ✔  VPC vpc-5896143f in ap-southeast-1 should be available
+     ✔  VPC vpc-47972220 in ap-southeast-2 should exist
+     ✔  VPC vpc-47972220 in ap-southeast-2 should be available
+     ✔  VPC vpc-071b6f0c69d1d0311 in eu-central-1 should exist
+     ✔  VPC vpc-071b6f0c69d1d0311 in eu-central-1 should be available
+     ✔  VPC vpc-807dfdeb in eu-central-1 should exist
+     ✔  VPC vpc-807dfdeb in eu-central-1 should be available
+     ✔  VPC vpc-0be54a71311bc362d in eu-central-1 should exist
+     ✔  VPC vpc-0be54a71311bc362d in eu-central-1 should be available
+     ✔  VPC vpc-f060cd8b in us-east-1 should exist
+     ✔  VPC vpc-f060cd8b in us-east-1 should be available
+     ✔  VPC vpc-0c3a7e116c58d714b in us-east-1 should exist
+     ✔  VPC vpc-0c3a7e116c58d714b in us-east-1 should be available
+     ✔  VPC vpc-047bff6c in us-east-2 should exist
+     ✔  VPC vpc-047bff6c in us-east-2 should be available
+     ✔  VPC vpc-93dd6ef4 in us-west-1 should exist
+     ✔  VPC vpc-93dd6ef4 in us-west-1 should be available
+     ✔  VPC vpc-2c0a6a55 in us-west-2 should exist
+     ✔  VPC vpc-2c0a6a55 in us-west-2 should be available
 
 
+Profile: Amazon Web Services  Resource Pack (inspec-aws)
+Version: 0.1.0
+Target:  aws://eu-west-2
 
+     No tests executed.
 
+Profile Summary: 2 successful controls, 0 control failures, 1 control skipped
+Test Summary: 52 successful, 0 failures, 1 skipped
 ```