2016-02-08 19:06:07 +00:00
|
|
|
# InSpec Extension for Chef Supermarket
|
|
|
|
|
|
|
|
To use the CLI, this InSpec add-on adds the following commands:
|
|
|
|
|
|
|
|
* `$ inspec supermarket configure` - configures the supermarket server
|
|
|
|
* `$ inspec supermarket search` - searches for a compliance profile on supermarket
|
|
|
|
* `$ inspec supermarket exec nathenharvey/tmp-compliance-profile` - extends execute to load the profile
|
|
|
|
|
2018-03-20 12:43:30 +00:00
|
|
|
Compliance profiles from Supermarket can be executed in two ways:
|
2016-02-08 19:06:07 +00:00
|
|
|
|
2021-11-29 13:42:28 +00:00
|
|
|
- via supermarket exec:
|
|
|
|
|
|
|
|
**Public Supermarket**
|
|
|
|
|
|
|
|
`inspec supermarket exec nathenharvey/tmp-compliance-profile`
|
|
|
|
|
|
|
|
**Private Supermarket**
|
|
|
|
|
|
|
|
`inspec supermarket exec nathenharvey/tmp-compliance-profile --supermarket_url="PRIVATE_SUPERMARKET_URL"`
|
|
|
|
|
|
|
|
|
|
|
|
- via supermarket scheme:
|
|
|
|
|
|
|
|
**Public Supermarket**
|
|
|
|
|
|
|
|
`inspec exec supermarket://nathenharvey/tmp-compliance-profile`
|
|
|
|
|
|
|
|
**Private Supermarket**
|
|
|
|
|
|
|
|
`inspec exec supermarket://nathenharvey/tmp-compliance-profile --supermarket_url="PRIVATE_SUPERMARKET_URL"`
|
|
|
|
|
2016-05-06 12:47:07 +00:00
|
|
|
|
|
|
|
## Usage
|
|
|
|
|
|
|
|
```
|
|
|
|
$ inspec supermarket
|
|
|
|
Commands:
|
|
|
|
inspec supermarket exec PROFILE # execute a Supermarket profile
|
|
|
|
inspec supermarket help [COMMAND] # Describe subcommands or one specific subcommand
|
|
|
|
inspec supermarket info PROFILE # display Supermarket profile details
|
|
|
|
inspec supermarket profiles # list all available profiles in Chef Supermarket
|
|
|
|
|
|
|
|
$ inspec supermarket profiles
|
|
|
|
Available profiles:
|
|
|
|
-------------------
|
|
|
|
* nathenharvey/tmp-compliance-profile
|
|
|
|
* hardening/os-hardening
|
|
|
|
* hardening/ssh-hardening
|
|
|
|
|
|
|
|
$ inspec supermarket info hardening/os-hardening
|
|
|
|
name: os-hardening
|
|
|
|
owner: hardening
|
|
|
|
url: https://github.com/dev-sec/tests-os-hardening
|
|
|
|
|
|
|
|
description: Base Linux Compliance profile, used for Security + DevOps. More Information is available at http://dev-sec.io/
|
|
|
|
|
|
|
|
$ inspec exec supermarket://hardening/os-hardening
|
|
|
|
........F.F.................F......FFF.....FFFF.F........FF....FFFFFFF...FF.FFFFFF.FFFFFFFFFFF.F...
|
|
|
|
|
|
|
|
...
|
|
|
|
|
|
|
|
Finished in 3.81 seconds (files took 5.69 seconds to load)
|
|
|
|
99 examples, 40 failures
|
|
|
|
```
|