opencontrol-linter 0.1.3 → 0.1.4

checksums.yaml

@@ -1,7 +1,7 @@
 ---
-SHA1:
-  metadata.gz: 9e890118e6b1b1a483d9dc72f7f90d27dedbf8af
-  data.tar.gz: b823064260b3dbd1fce4ff702752323c3e6de6ff
+SHA256:
+  metadata.gz: c357e597012b9d0a0d3e39d2142641b07da23a7a4b76c3f6354a7a7f71293b2a
+  data.tar.gz: 56ce59414bc589a19ea9c6d48be26fe7179c157693180314d03ac8bf7537e756
 SHA512:
-  metadata.gz: cdcd4931f2488c2efb2ff9471bcbcd22408703dd694b0b73e6e3b0d28a7b19faeb7b2b5e687f35ea63dede1421e1dc1371419a689eb5f26bcbd6c7cf6e1dafaa
-  data.tar.gz: 548245c81271b7ae37489a3f7e727cb979a0765e50474adaf6c2c167773d022ec4132635b31ab61dfe248cfaa451edb88e331cf79699e0e65636f5abf29d39f4
+  metadata.gz: 127982ea79db363912df7ae1c6e30dc148b3c7dc6d256d446892fbbb24262c31e2db38faf49ababcde44b51874d3aa8e9e99a1120f5f77d2ef8a453677ecd8dd
+  data.tar.gz: 86724dbdbda2d39d63239481b064a4c41bb68bf341bbad26fc50a11ce7e540e70a0a2bd432d280ead7e33019b71be342e6959d6794609e500340d72a912f9f1e

data/README.md

@@ -105,6 +105,26 @@ The following directory structure for compliance is typical. You can specify tho
 
 ```
 
+## Installing a commit hook 
+
+A commit hook will run the linter before checkin and prevent checkin of unlinted 
+code.
+
+```cassandraql
+# Append the pre-comit hook using a here document
+
+tee -a .git/hooks/pre-commit <<EOF
+#!/bin/sh
+# check the validity of OpenControl files
+opencontrol-linter
+EOF
+
+# Ensure the hook is executable
+
+chmod 755 .git/hooks/pre-commit
+
+```
+
 ## Development
 
 Clone this repo

data/lib/opencontrol/version.rb

@@ -3,7 +3,7 @@
 module Opencontrol
   # This module holds the Opencontrol Linter version information.
   module Version
-    STRING = '0.1.3'.freeze
+    STRING = '0.1.4'.freeze
 
     MSG = '%<version>s (using Parser %<parser_version>s, running on ' \
           '%<ruby_engine>s %<ruby_version>s %<ruby_platform>s)'.freeze

data/vendor/schemas/examples/component_v3.1.0.surfaces.yaml

@@ -0,0 +1,91 @@
+documentation_complete: false
+name: Amazon Elastic Compute Cloud
+references:
+  - name: Reference
+    path: http://VerificationURL.com
+    type: URL
+exposes_risk_surfaces:
+  - key: aws_east
+    type: physical
+  - key: aws_management_interface
+    type: logical
+  - key: application_interface
+    type: logical
+satisfies:
+  - control_key: CM-2
+    covered_by:
+      - verification_key: EC2_Verification_1
+      - component_key: UAA
+        system_key: CloudFoundry
+        verification_key: UAA_Verification_1
+    protects_risk_surfaces:
+      - key: application_interface
+        type: logical
+    implementation_statuses:
+      - partial
+      - planned
+    control_origins:
+      - shared
+      - inherited
+    references:
+      - name: Reference2
+        path: http://VerificationURL2.com
+        type: URL
+    narrative:
+      - key: "a"
+        text: "Justification in narrative form A for CM-2"
+      - key: "b"
+        text: "Justification in narrative form B for CM-2"
+    standard_key: NIST-800-53
+  - control_key: 1.1
+    covered_by:
+      - verification_key: EC2_Verification_1
+      - component_key: UAA
+        system_key: CloudFoundry
+        verification_key: UAA_Verification_1
+    implementation_status: partial
+    control_origin: inherited
+    parameters:
+      - key: "a"
+        text: "Parameter A for 1.1"
+      - key: "b"
+        text: "Parameter B for 1.1"
+    narrative:
+      - key: "a"
+        text: "Justification in narrative form A for 1.1"
+      - key: "b"
+        text: "Justification in narrative form B for 1.1"
+    standard_key: PCI-DSS-MAY-2015
+  - control_key: 1.1.1
+    covered_by: []
+    implementation_status: partial
+    control_origin: inherited
+    narrative:
+      - key: "a"
+        text: "Justification in narrative form A for 1.1.1"
+      - key: "b"
+        text: "Justification in narrative form B for 1.1.1"
+    parameters:
+      - key: "a"
+        text: "Parameter A for 1.1.1"
+      - key: "b"
+        text: "Parameter B for 1.1.1"
+    standard_key: PCI-DSS-MAY-2015
+  - control_key: 2.1
+    covered_by: []
+    implementation_status: partial
+    control_origin: inherited
+    narrative:
+      - text: "Justification in narrative form for 2.1"
+    standard_key: PCI-DSS-MAY-2015
+responsible_role: "AWS Staff"
+schema_version: 3.1.0.surfaces
+verifications:
+  - key: EC2_Verification_2
+    name: EC2 Governor 2
+    path: artifact-ec2-1.png
+    type: Image
+  - key: EC2_Verification_1
+    name: EC2 Verification 1
+    path: http://VerificationURL.com
+    type: URL

data/vendor/schemas/kwalify/component/v3.1.0.surfaces.yaml

@@ -0,0 +1,162 @@
+type: map
+mapping:
+  name:
+    type: str
+    required: true
+  key:
+    type: str
+  system:
+    type: str
+    required: false
+  schema_version:
+    type: str
+    required: true
+  documentation_complete:
+    type: bool
+  exposes_risk_surfaces:
+    type: seq
+    sequence:
+      - type: map
+        mapping:
+          key:
+            type: str
+          type:
+            type: str
+            enum:
+              - physical
+              - logical
+  responsible_role:
+    type: str
+  references:
+    type: seq
+    sequence:
+      - type: map
+        mapping:
+          name:
+            type: str
+            required: true
+          path:
+            type: str
+          type:
+            type: str
+            required: true
+  verifications:
+    type: seq
+    sequence:
+      - type: map
+        mapping:
+          key:
+            type: str
+            required: true
+          name:
+            type: str
+            required: true
+          path:
+            type: str
+          type:
+            type: str
+            required: true
+          description:
+            type: str
+          test_passed:
+            type: bool
+          last_run:
+            type: any
+  satisfies:
+    type: seq
+    sequence:
+      - type: map
+        mapping:
+          standard_key:
+            type: text
+            required: true
+          control_key:
+            type: text
+            required: true
+          narrative:
+            required: true
+            type: seq
+            sequence:
+              - type: map
+                mapping:
+                  key:
+                    type: str
+                  text:
+                    type: str
+                    required: true
+          references:
+            type: seq
+            sequence:
+              - type: map
+                mapping:
+                  name:
+                    type: str
+                    required: true
+                  path:
+                    type: str
+                  type:
+                    type: str
+                    required: true
+          control_origin:
+            desc: |
+              This field will be deprectated in future versions of the schema.
+              Please use control_origins.
+            type: str
+          control_origins:
+            type: seq
+            sequence:
+              - type: str
+          protects_risk_surfaces:
+            type: seq
+            sequence:
+              - type: map
+                mapping:
+                  key:
+                    type: str
+                  type:
+                    type: str
+                    enum:
+                      - physical
+                      - logical
+          parameters:
+            type: seq
+            sequence:
+              - type: map
+                mapping:
+                  key:
+                    type: str
+                    required: true
+                  text:
+                    type: str
+                    required: true
+          implementation_status:
+            desc: |
+              This field will be deprectated in future versions of the schema.
+              Please use implementation_statuses.
+            type: str
+            enum:
+              - partial
+              - complete
+              - planned
+              - none
+          implementation_statuses:
+            type: seq
+            sequence:
+              - type: str
+                enum:
+                  - partial
+                  - complete
+                  - planned
+                  - none
+          covered_by:
+            type: seq
+            sequence:
+              - type: map
+                mapping:
+                  system_key:
+                    type: str
+                  component_key:
+                    type: str
+                  verification_key:
+                    type: str
+                    required: true

metadata

@@ -1,7 +1,7 @@
 --- !ruby/object:Gem::Specification
 name: opencontrol-linter
 version: !ruby/object:Gem::Version
-  version: 0.1.3
+  version: 0.1.4
 platform: ruby
 authors:
 - Adrian Kierman
@@ -9,7 +9,7 @@ authors:
 autorequire: 
 bindir: exe
 cert_chain: []
-date: 2019-03-12 00:00:00.000000000 Z
+date: 2019-03-27 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: colorize
@@ -286,6 +286,7 @@ files:
 - vendor/schemas/CONTRIBUTING.md
 - vendor/schemas/README.md
 - vendor/schemas/examples/component_v3.0.0.yaml
+- vendor/schemas/examples/component_v3.1.0.surfaces.yaml
 - vendor/schemas/examples/component_v3.1.0.yaml
 - vendor/schemas/examples/opencontrol_v1.0.0.yaml
 - vendor/schemas/kwalify/README.md
@@ -294,6 +295,7 @@ files:
 - vendor/schemas/kwalify/component/v1.0.0.yaml
 - vendor/schemas/kwalify/component/v2.0.0.yaml
 - vendor/schemas/kwalify/component/v3.0.0.yaml
+- vendor/schemas/kwalify/component/v3.1.0.surfaces.yaml
 - vendor/schemas/kwalify/component/v3.1.0.yaml
 - vendor/schemas/kwalify/opencontrol/v1.0.0.yaml
 - vendor/schemas/kwalify/requirements.txt
@@ -330,7 +332,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
       version: '0'
 requirements: []
 rubyforge_project: 
-rubygems_version: 2.5.2.1
+rubygems_version: 2.7.6
 signing_key: 
 specification_version: 4
 summary: Automatic open control linting tool.