puppet-lint-infrasecure 1.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (64) hide show
  1. checksums.yaml +7 -0
  2. data/README.md +81 -0
  3. data/lib/puppet-lint/linter.rb +132 -0
  4. data/lib/puppet-lint/plugins/check_admin_by_default.rb +26 -0
  5. data/lib/puppet-lint/plugins/check_cyrillic_homograph_attack.rb +19 -0
  6. data/lib/puppet-lint/plugins/check_empty_password.rb +26 -0
  7. data/lib/puppet-lint/plugins/check_hard_coded_secret.rb +31 -0
  8. data/lib/puppet-lint/plugins/check_invalid_ip_addr_binding.rb +23 -0
  9. data/lib/puppet-lint/plugins/check_malicious_dependency.rb +24 -0
  10. data/lib/puppet-lint/plugins/check_suspicious_comment.rb +19 -0
  11. data/lib/puppet-lint/plugins/check_use_http_without_tls.rb +27 -0
  12. data/lib/puppet-lint/plugins/check_use_of_weak_crypto_algorithm.rb +21 -0
  13. data/lib/puppet-lint/plugins/check_weak_password.rb +27 -0
  14. data/lib/puppet-lint-infrasecure/config/dependencies.yml +33 -0
  15. data/lib/puppet-lint-infrasecure/config/whitelist +19 -0
  16. data/lib/puppet-lint-infrasecure/dependencies/activemq.json +407 -0
  17. data/lib/puppet-lint-infrasecure/dependencies/apt.json +453 -0
  18. data/lib/puppet-lint-infrasecure/dependencies/cassandra.json +122 -0
  19. data/lib/puppet-lint-infrasecure/dependencies/docker.json +200 -0
  20. data/lib/puppet-lint-infrasecure/dependencies/elasticsearch.json +32 -0
  21. data/lib/puppet-lint-infrasecure/dependencies/gitlab.json +1161 -0
  22. data/lib/puppet-lint-infrasecure/dependencies/grafana.json +31 -0
  23. data/lib/puppet-lint-infrasecure/dependencies/haproxy.json +159 -0
  24. data/lib/puppet-lint-infrasecure/dependencies/jenkins.json +876 -0
  25. data/lib/puppet-lint-infrasecure/dependencies/jira.json +460 -0
  26. data/lib/puppet-lint-infrasecure/dependencies/kafka.json +32 -0
  27. data/lib/puppet-lint-infrasecure/dependencies/kubernetes.json +123 -0
  28. data/lib/puppet-lint-infrasecure/dependencies/mongodb.json +156 -0
  29. data/lib/puppet-lint-infrasecure/dependencies/mysql.json +14549 -0
  30. data/lib/puppet-lint-infrasecure/dependencies/nagios_core.json +8 -0
  31. data/lib/puppet-lint-infrasecure/dependencies/nginx.json +1322 -0
  32. data/lib/puppet-lint-infrasecure/dependencies/nodejs.json +247 -0
  33. data/lib/puppet-lint-infrasecure/dependencies/ntp.json +2163 -0
  34. data/lib/puppet-lint-infrasecure/dependencies/openstack.json +447 -0
  35. data/lib/puppet-lint-infrasecure/dependencies/openvpn.json +816 -0
  36. data/lib/puppet-lint-infrasecure/dependencies/postgresql.json +4256 -0
  37. data/lib/puppet-lint-infrasecure/dependencies/puppet_agent.json +23 -0
  38. data/lib/puppet-lint-infrasecure/dependencies/python.json +1134 -0
  39. data/lib/puppet-lint-infrasecure/dependencies/rabbitmq.json +602 -0
  40. data/lib/puppet-lint-infrasecure/dependencies/redis.json +51 -0
  41. data/lib/puppet-lint-infrasecure/dependencies/ruby.json +487 -0
  42. data/lib/puppet-lint-infrasecure/dependencies/sqlite.json +52 -0
  43. data/lib/puppet-lint-infrasecure/dependencies/systemd.json +180 -0
  44. data/lib/puppet-lint-infrasecure/dependencies/tomcat.json +8635 -0
  45. data/lib/puppet-lint-infrasecure/dependencies/vault.json +14 -0
  46. data/lib/puppet-lint-infrasecure/dependencies/wget.json +129 -0
  47. data/lib/puppet-lint-infrasecure/dependencies/yum.json +14 -0
  48. data/lib/puppet-lint-infrasecure/dependencies/zabbix.json +940 -0
  49. data/lib/puppet-lint-infrasecure/regex.rb +18 -0
  50. data/lib/puppet-lint-infrasecure/rules.rb +51 -0
  51. data/lib/puppet-lint-infrasecure/version.rb +3 -0
  52. data/lib/puppet-lint-infrasecure.rb +62 -0
  53. data/spec/puppet-lint/plugins/check_admin_by_default_spec.rb +34 -0
  54. data/spec/puppet-lint/plugins/check_cyrillic_homograph_attack_spec.rb +22 -0
  55. data/spec/puppet-lint/plugins/check_empty_password_spec.rb +55 -0
  56. data/spec/puppet-lint/plugins/check_hard_coded_secret_spec.rb +53 -0
  57. data/spec/puppet-lint/plugins/check_invalid_ip_addr_binding_spec.rb +46 -0
  58. data/spec/puppet-lint/plugins/check_malicious_dependency_spec.rb +39 -0
  59. data/spec/puppet-lint/plugins/check_suspicious_comment_spec.rb +50 -0
  60. data/spec/puppet-lint/plugins/check_use_http_without_tls_spec.rb +100 -0
  61. data/spec/puppet-lint/plugins/check_use_of_weak_crypto_algorithm_spec.rb +42 -0
  62. data/spec/puppet-lint/plugins/check_weak_password_spec.rb +29 -0
  63. data/spec/spec_helper.rb +3 -0
  64. metadata +284 -0
data/lib/puppet-lint-infrasecure/dependencies/apt.json ADDED
@@ -0,0 +1,453 @@
1
+ {
2
+ "0.9.7": [
3
+ "CVE-2013-1051",
4
+ "CVE-2012-0961"
5
+ ],
6
+ "0.7.9": [
7
+ "CVE-2009-1358"
8
+ ],
9
+ "0.7.8": [
10
+ "CVE-2009-1358"
11
+ ],
12
+ "0.6.46.1": [
13
+ "CVE-2009-1358"
14
+ ],
15
+ "0.6.46": [
16
+ "CVE-2009-1358"
17
+ ],
18
+ "0.6.45": [
19
+ "CVE-2009-1358"
20
+ ],
21
+ "0.6.43.2": [
22
+ "CVE-2009-1358"
23
+ ],
24
+ "0.6.43.1": [
25
+ "CVE-2009-1358"
26
+ ],
27
+ "0.6.40.1": [
28
+ "CVE-2009-1358"
29
+ ],
30
+ "0.6.40": [
31
+ "CVE-2009-1358"
32
+ ],
33
+ "0.6.33": [
34
+ "CVE-2009-1358"
35
+ ],
36
+ "0.6.32": [
37
+ "CVE-2009-1358"
38
+ ],
39
+ "0.6.27": [
40
+ "CVE-2009-1358"
41
+ ],
42
+ "0.6.20": [
43
+ "CVE-2009-1358"
44
+ ],
45
+ "0.6.19": [
46
+ "CVE-2009-1358"
47
+ ],
48
+ "0.6.11": [
49
+ "CVE-2009-1358"
50
+ ],
51
+ "0.6.10": [
52
+ "CVE-2009-1358"
53
+ ],
54
+ "0.6.3": [
55
+ "CVE-2009-1358"
56
+ ],
57
+ "0.6.2": [
58
+ "CVE-2009-1358"
59
+ ],
60
+ "0.5.30": [
61
+ "CVE-2009-1358"
62
+ ],
63
+ "0.5.29": [
64
+ "CVE-2009-1358"
65
+ ],
66
+ "0.5.22": [
67
+ "CVE-2009-1358"
68
+ ],
69
+ "0.5.21": [
70
+ "CVE-2009-1358"
71
+ ],
72
+ "0.5.14": [
73
+ "CVE-2009-1358"
74
+ ],
75
+ "0.5.13": [
76
+ "CVE-2009-1358"
77
+ ],
78
+ "0.5.6": [
79
+ "CVE-2009-1358"
80
+ ],
81
+ "0.5.5.1": [
82
+ "CVE-2009-1358"
83
+ ],
84
+ "0.3.18": [
85
+ "CVE-2009-1358"
86
+ ],
87
+ "0.3.17": [
88
+ "CVE-2009-1358"
89
+ ],
90
+ "0.3.9": [
91
+ "CVE-2009-1358"
92
+ ],
93
+ "0.3.7": [
94
+ "CVE-2009-1358"
95
+ ],
96
+ "0.1.9": [
97
+ "CVE-2009-1358"
98
+ ],
99
+ "0.1.7": [
100
+ "CVE-2009-1358"
101
+ ],
102
+ "0.1.6": [
103
+ "CVE-2009-1358"
104
+ ],
105
+ "0.0.15-0.2bo": [
106
+ "CVE-2009-1358"
107
+ ],
108
+ "0.0.15-0.1bo": [
109
+ "CVE-2009-1358"
110
+ ],
111
+ "0.0.10": [
112
+ "CVE-2009-1358"
113
+ ],
114
+ "0.0.9": [
115
+ "CVE-2009-1358"
116
+ ],
117
+ "0.0.1": [
118
+ "CVE-2009-1358"
119
+ ],
120
+ "0.7.7": [
121
+ "CVE-2009-1358"
122
+ ],
123
+ "0.7.6": [
124
+ "CVE-2009-1358"
125
+ ],
126
+ "0.6.46.4-0.1": [
127
+ "CVE-2009-1358"
128
+ ],
129
+ "0.6.44.2": [
130
+ "CVE-2009-1358"
131
+ ],
132
+ "0.6.43": [
133
+ "CVE-2009-1358"
134
+ ],
135
+ "0.6.42.3": [
136
+ "CVE-2009-1358"
137
+ ],
138
+ "0.6.39": [
139
+ "CVE-2009-1358"
140
+ ],
141
+ "0.6.38": [
142
+ "CVE-2009-1358"
143
+ ],
144
+ "0.6.31": [
145
+ "CVE-2009-1358"
146
+ ],
147
+ "0.6.30": [
148
+ "CVE-2009-1358"
149
+ ],
150
+ "0.6.25": [
151
+ "CVE-2009-1358"
152
+ ],
153
+ "0.6.18": [
154
+ "CVE-2009-1358"
155
+ ],
156
+ "0.6.17": [
157
+ "CVE-2009-1358"
158
+ ],
159
+ "0.6.9": [
160
+ "CVE-2009-1358"
161
+ ],
162
+ "0.6.8": [
163
+ "CVE-2009-1358"
164
+ ],
165
+ "0.6.1": [
166
+ "CVE-2009-1358"
167
+ ],
168
+ "0.6.0": [
169
+ "CVE-2009-1358"
170
+ ],
171
+ "0.5.28": [
172
+ "CVE-2009-1358"
173
+ ],
174
+ "0.5.20": [
175
+ "CVE-2009-1358"
176
+ ],
177
+ "0.5.19": [
178
+ "CVE-2009-1358"
179
+ ],
180
+ "0.5.12": [
181
+ "CVE-2009-1358"
182
+ ],
183
+ "0.5.11": [
184
+ "CVE-2009-1358"
185
+ ],
186
+ "0.5.5": [
187
+ "CVE-2009-1358"
188
+ ],
189
+ "0.5.4": [
190
+ "CVE-2009-1358"
191
+ ],
192
+ "0.5.3": [
193
+ "CVE-2009-1358"
194
+ ],
195
+ "0.3.16": [
196
+ "CVE-2009-1358"
197
+ ],
198
+ "0.3.15": [
199
+ "CVE-2009-1358"
200
+ ],
201
+ "0.3.6": [
202
+ "CVE-2009-1358"
203
+ ],
204
+ "0.3.4": [
205
+ "CVE-2009-1358"
206
+ ],
207
+ "0.1.5": [
208
+ "CVE-2009-1358"
209
+ ],
210
+ "0.1.3": [
211
+ "CVE-2009-1358"
212
+ ],
213
+ "0.0.15": [
214
+ "CVE-2009-1358"
215
+ ],
216
+ "0.0.14": [
217
+ "CVE-2009-1358"
218
+ ],
219
+ "0.0.8": [
220
+ "CVE-2009-1358"
221
+ ],
222
+ "0.0.7": [
223
+ "CVE-2009-1358"
224
+ ],
225
+ "0.7.3": [
226
+ "CVE-2009-1358"
227
+ ],
228
+ "0.6.46.3": [
229
+ "CVE-2009-1358"
230
+ ],
231
+ "0.6.46.2": [
232
+ "CVE-2009-1358"
233
+ ],
234
+ "0.6.44": [
235
+ "CVE-2009-1358"
236
+ ],
237
+ "0.6.43.3": [
238
+ "CVE-2009-1358"
239
+ ],
240
+ "0.6.42": [
241
+ "CVE-2009-1358"
242
+ ],
243
+ "0.6.41": [
244
+ "CVE-2009-1358"
245
+ ],
246
+ "0.6.36": [
247
+ "CVE-2009-1358"
248
+ ],
249
+ "0.6.35": [
250
+ "CVE-2009-1358"
251
+ ],
252
+ "0.6.34": [
253
+ "CVE-2009-1358"
254
+ ],
255
+ "0.6.22": [
256
+ "CVE-2009-1358"
257
+ ],
258
+ "0.6.21": [
259
+ "CVE-2009-1358"
260
+ ],
261
+ "0.6.13": [
262
+ "CVE-2009-1358"
263
+ ],
264
+ "0.6.12": [
265
+ "CVE-2009-1358"
266
+ ],
267
+ "0.6.5": [
268
+ "CVE-2009-1358"
269
+ ],
270
+ "0.6.4": [
271
+ "CVE-2009-1358"
272
+ ],
273
+ "0.5.24": [
274
+ "CVE-2009-1358"
275
+ ],
276
+ "0.5.23": [
277
+ "CVE-2009-1358"
278
+ ],
279
+ "0.5.16": [
280
+ "CVE-2009-1358"
281
+ ],
282
+ "0.5.15": [
283
+ "CVE-2009-1358"
284
+ ],
285
+ "0.5.8": [
286
+ "CVE-2009-1358"
287
+ ],
288
+ "0.5.7": [
289
+ "CVE-2009-1358"
290
+ ],
291
+ "0.5.0": [
292
+ "CVE-2009-1358"
293
+ ],
294
+ "0.3.19": [
295
+ "CVE-2009-1358"
296
+ ],
297
+ "0.3.12": [
298
+ "CVE-2009-1358"
299
+ ],
300
+ "0.3.11": [
301
+ "CVE-2009-1358"
302
+ ],
303
+ "0.3.1": [
304
+ "CVE-2009-1358"
305
+ ],
306
+ "0.3.0": [
307
+ "CVE-2009-1358"
308
+ ],
309
+ "0.0.17-1": [
310
+ "CVE-2009-1358"
311
+ ],
312
+ "0.0.16-1": [
313
+ "CVE-2009-1358"
314
+ ],
315
+ "0.0.12": [
316
+ "CVE-2009-1358"
317
+ ],
318
+ "0.0.11": [
319
+ "CVE-2009-1358"
320
+ ],
321
+ "0.0.4": [
322
+ "CVE-2009-1358"
323
+ ],
324
+ "0.0.3": [
325
+ "CVE-2009-1358"
326
+ ],
327
+ "0.0.2": [
328
+ "CVE-2009-1358"
329
+ ],
330
+ "0.7.5": [
331
+ "CVE-2009-1358"
332
+ ],
333
+ "0.7.4": [
334
+ "CVE-2009-1358"
335
+ ],
336
+ "0.6.46.3-0.2": [
337
+ "CVE-2009-1358"
338
+ ],
339
+ "0.6.46.3-0.1": [
340
+ "CVE-2009-1358"
341
+ ],
342
+ "0.6.44.1-0.1": [
343
+ "CVE-2009-1358"
344
+ ],
345
+ "0.6.44.1": [
346
+ "CVE-2009-1358"
347
+ ],
348
+ "0.6.42.2": [
349
+ "CVE-2009-1358"
350
+ ],
351
+ "0.6.42.1": [
352
+ "CVE-2009-1358"
353
+ ],
354
+ "0.6.37": [
355
+ "CVE-2009-1358"
356
+ ],
357
+ "0.6.29": [
358
+ "CVE-2009-1358"
359
+ ],
360
+ "0.6.28": [
361
+ "CVE-2009-1358"
362
+ ],
363
+ "0.6.24": [
364
+ "CVE-2009-1358"
365
+ ],
366
+ "0.6.23": [
367
+ "CVE-2009-1358"
368
+ ],
369
+ "0.6.16": [
370
+ "CVE-2009-1358"
371
+ ],
372
+ "0.6.15": [
373
+ "CVE-2009-1358"
374
+ ],
375
+ "0.6.14": [
376
+ "CVE-2009-1358"
377
+ ],
378
+ "0.6.7": [
379
+ "CVE-2009-1358"
380
+ ],
381
+ "0.6.6": [
382
+ "CVE-2009-1358"
383
+ ],
384
+ "0.5.32": [
385
+ "CVE-2009-1358"
386
+ ],
387
+ "0.5.31": [
388
+ "CVE-2009-1358"
389
+ ],
390
+ "0.5.27": [
391
+ "CVE-2009-1358"
392
+ ],
393
+ "0.5.26": [
394
+ "CVE-2009-1358"
395
+ ],
396
+ "0.5.25": [
397
+ "CVE-2009-1358"
398
+ ],
399
+ "0.5.18": [
400
+ "CVE-2009-1358"
401
+ ],
402
+ "0.5.17": [
403
+ "CVE-2009-1358"
404
+ ],
405
+ "0.5.10": [
406
+ "CVE-2009-1358"
407
+ ],
408
+ "0.5.9": [
409
+ "CVE-2009-1358"
410
+ ],
411
+ "0.5.2": [
412
+ "CVE-2009-1358"
413
+ ],
414
+ "0.5.1": [
415
+ "CVE-2009-1358"
416
+ ],
417
+ "0.3.14": [
418
+ "CVE-2009-1358"
419
+ ],
420
+ "0.3.13": [
421
+ "CVE-2009-1358"
422
+ ],
423
+ "0.3.3": [
424
+ "CVE-2009-1358"
425
+ ],
426
+ "0.3.2": [
427
+ "CVE-2009-1358"
428
+ ],
429
+ "0.1.1": [
430
+ "CVE-2009-1358"
431
+ ],
432
+ "0.1": [
433
+ "CVE-2009-1358"
434
+ ],
435
+ "0.0.13-bo1": [
436
+ "CVE-2009-1358"
437
+ ],
438
+ "0.0.13": [
439
+ "CVE-2009-1358"
440
+ ],
441
+ "0.0.6": [
442
+ "CVE-2009-1358"
443
+ ],
444
+ "0.0.5": [
445
+ "CVE-2009-1358"
446
+ ],
447
+ "1.0.9": [
448
+ "CVE-2014-7206"
449
+ ],
450
+ "0.9.7.9": [
451
+ "CVE-2014-7206"
452
+ ]
453
+ }
data/lib/puppet-lint-infrasecure/dependencies/cassandra.json ADDED
@@ -0,0 +1,122 @@
1
+ {
2
+ "3.11.4": [
3
+ "CVE-2016-4970"
4
+ ],
5
+ "4.0.0": [
6
+ "CVE-2020-13946"
7
+ ],
8
+ "1.2.0": [
9
+ "CVE-2015-0225"
10
+ ],
11
+ "1.2.1": [
12
+ "CVE-2015-0225"
13
+ ],
14
+ "1.2.8": [
15
+ "CVE-2015-0225"
16
+ ],
17
+ "1.2.9": [
18
+ "CVE-2015-0225"
19
+ ],
20
+ "1.2.17": [
21
+ "CVE-2015-0225"
22
+ ],
23
+ "1.2.18": [
24
+ "CVE-2015-0225"
25
+ ],
26
+ "2.0.5": [
27
+ "CVE-2015-0225"
28
+ ],
29
+ "2.0.6": [
30
+ "CVE-2015-0225"
31
+ ],
32
+ "2.0.13": [
33
+ "CVE-2015-0225"
34
+ ],
35
+ "2.1.0": [
36
+ "CVE-2015-0225"
37
+ ],
38
+ "1.2.4": [
39
+ "CVE-2015-0225"
40
+ ],
41
+ "1.2.5": [
42
+ "CVE-2015-0225"
43
+ ],
44
+ "1.2.12": [
45
+ "CVE-2015-0225"
46
+ ],
47
+ "1.2.13": [
48
+ "CVE-2015-0225"
49
+ ],
50
+ "1.2.14": [
51
+ "CVE-2015-0225"
52
+ ],
53
+ "2.0.1": [
54
+ "CVE-2015-0225"
55
+ ],
56
+ "2.0.2": [
57
+ "CVE-2015-0225"
58
+ ],
59
+ "2.0.9": [
60
+ "CVE-2015-0225"
61
+ ],
62
+ "2.0.10": [
63
+ "CVE-2015-0225"
64
+ ],
65
+ "2.1.3": [
66
+ "CVE-2015-0225"
67
+ ],
68
+ "1.2.2": [
69
+ "CVE-2015-0225"
70
+ ],
71
+ "1.2.3": [
72
+ "CVE-2015-0225"
73
+ ],
74
+ "1.2.10": [
75
+ "CVE-2015-0225"
76
+ ],
77
+ "1.2.11": [
78
+ "CVE-2015-0225"
79
+ ],
80
+ "1.2.19": [
81
+ "CVE-2015-0225"
82
+ ],
83
+ "2.0.0": [
84
+ "CVE-2015-0225"
85
+ ],
86
+ "2.0.7": [
87
+ "CVE-2015-0225"
88
+ ],
89
+ "2.0.8": [
90
+ "CVE-2015-0225"
91
+ ],
92
+ "2.1.1": [
93
+ "CVE-2015-0225"
94
+ ],
95
+ "2.1.2": [
96
+ "CVE-2015-0225"
97
+ ],
98
+ "1.2.6": [
99
+ "CVE-2015-0225"
100
+ ],
101
+ "1.2.7": [
102
+ "CVE-2015-0225"
103
+ ],
104
+ "1.2.15": [
105
+ "CVE-2015-0225"
106
+ ],
107
+ "1.2.16": [
108
+ "CVE-2015-0225"
109
+ ],
110
+ "2.0.3": [
111
+ "CVE-2015-0225"
112
+ ],
113
+ "2.0.4": [
114
+ "CVE-2015-0225"
115
+ ],
116
+ "2.0.11": [
117
+ "CVE-2015-0225"
118
+ ],
119
+ "2.0.12": [
120
+ "CVE-2015-0225"
121
+ ]
122
+ }