inspec/docs/resources/powershell.md.erb

---
title: About the powershell Resource
---

# powershell

Use the `powershell` InSpec audit resource to test a Powershell script on the Windows platform.

## Syntax

A `powershell` resource block declares a Powershell script to be tested, and then compares the output of that command to the matcher in the test:

    script = <<-EOH
      # a PowerShell script
    EOH

    describe powershell(script) do
      its('matcher') { should eq 'output' }
    end

where

* `'script'` must specify a Powershell script to be run
* `'matcher'` is one of `exit_status`, `stderr`, or `stdout`
* `'output'` tests the output of the command run on the system versus the output value stated in the test


## Matchers

This InSpec audit resource has the following matchers:

### be

<%= partial "/shared/matcher_be" %>

### cmp

<%= partial "/shared/matcher_cmp" %>

### eq

<%= partial "/shared/matcher_eq" %>

### exit_status

The `exit_status` matcher tests the exit status for the command:

    its('exit_status') { should eq 123 }

### include

<%= partial "/shared/matcher_include" %>

### match

<%= partial "/shared/matcher_match" %>

### stderr

The `stderr` matcher tests results of the command as returned in standard error (stderr):

    its('stderr') { should eq 'error' }

### stdout

The `stdout` matcher tests results of the command as returned in standard output (stdout):

    its('stdout') { should eq '/^1$/' }

## Examples

The following examples show how to use this InSpec audit resource.

### Get all groups of Administrator user

    script = <<-EOH
      # find user
      $user = Get-WmiObject Win32_UserAccount -filter "Name = 'Administrator'"
      # get related groups
      $groups = $user.GetRelated('Win32_Group') | Select-Object -Property Caption, Domain, Name, LocalAccount, SID, SIDType, Status
      $groups | ConvertTo-Json
    EOH

    describe powershell(script) do
      its('stdout') { should_not eq '' }
    end

### Write-Output 'hello'

The following Powershell script:

    script = <<-EOH
      Write-Output 'hello'
    EOH

can be tested in the following ways.

For a newline:

    describe powershell(script) do
      its('stdout') { should eq "hello\r\n" }
      its('stderr') { should eq '' }
    end

Removing whitespace `\r\n` from `stdout`:

    describe powershell(script) do
      its('strip') { should eq "hello" }
    end

No newline:

    describe powershell("'hello' | Write-Host -NoNewLine") do
      its('stdout') { should eq 'hello' }
      its('stderr') { should eq '' }
    end
add all partials for resources 2016-09-22 12:43:57 +00:00			`---`
			`title: About the powershell Resource`
			`---`

			`# powershell`

			Use the `powershell` InSpec audit resource to test a Powershell script on the Windows platform.

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`## Syntax`
add all partials for resources 2016-09-22 12:43:57 +00:00
			A `powershell` resource block declares a Powershell script to be tested, and then compares the output of that command to the matcher in the test:

			`script = <<-EOH`
			`# a PowerShell script`
			`EOH`

Fixes resources in the docs * Fixes the npm package example to state 'npm' vs 'gem' * Fixes powershell resource to specify the resource instead of 'script' * Updates the example to rename variable 'script' While ruby would allow the local variable and the presence of the InSpec method at the same time I think that it is bad form. Other resource examples also use 'script'. * Changes pip to show generic example Other package like resources show a generic example in the default. Signed-off-by: Franklin Webber <franklin@chef.io> 2016-11-20 01:37:24 +00:00			`describe powershell(script) do`
add all partials for resources 2016-09-22 12:43:57 +00:00			`its('matcher') { should eq 'output' }`
			`end`

			`where`

			* `'script'` must specify a Powershell script to be run
			* `'matcher'` is one of `exit_status`, `stderr`, or `stdout`
			* `'output'` tests the output of the command run on the system versus the output value stated in the test


Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`## Matchers`
add all partials for resources 2016-09-22 12:43:57 +00:00
			`This InSpec audit resource has the following matchers:`

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`### be`
add all partials for resources 2016-09-22 12:43:57 +00:00
			`<%= partial "/shared/matcher_be" %>`

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`### cmp`
add all partials for resources 2016-09-22 12:43:57 +00:00
			`<%= partial "/shared/matcher_cmp" %>`

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`### eq`
add all partials for resources 2016-09-22 12:43:57 +00:00
			`<%= partial "/shared/matcher_eq" %>`

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`### exit_status`
add all partials for resources 2016-09-22 12:43:57 +00:00
			The `exit_status` matcher tests the exit status for the command:

			`its('exit_status') { should eq 123 }`

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`### include`
add all partials for resources 2016-09-22 12:43:57 +00:00
			`<%= partial "/shared/matcher_include" %>`

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`### match`
add all partials for resources 2016-09-22 12:43:57 +00:00
			`<%= partial "/shared/matcher_match" %>`

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`### stderr`
add all partials for resources 2016-09-22 12:43:57 +00:00
			The `stderr` matcher tests results of the command as returned in standard error (stderr):

			`its('stderr') { should eq 'error' }`

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`### stdout`
add all partials for resources 2016-09-22 12:43:57 +00:00
			The `stdout` matcher tests results of the command as returned in standard output (stdout):

			`its('stdout') { should eq '/^1$/' }`

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`## Examples`
add all partials for resources 2016-09-22 12:43:57 +00:00
			`The following examples show how to use this InSpec audit resource.`

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`### Get all groups of Administrator user`
add all partials for resources 2016-09-22 12:43:57 +00:00
			`script = <<-EOH`
			`# find user`
			`$user = Get-WmiObject Win32_UserAccount -filter "Name = 'Administrator'"`
			`# get related groups`
			`$groups = $user.GetRelated('Win32_Group') \| Select-Object -Property Caption, Domain, Name, LocalAccount, SID, SIDType, Status`
			`$groups \| ConvertTo-Json`
			`EOH`

			`describe powershell(script) do`
			`its('stdout') { should_not eq '' }`
			`end`

Changing headings to align with SEO best practices Signed-off-by: David Wrede <dwrede@chef.io> 2016-09-27 19:03:23 +00:00			`### Write-Output 'hello'`
add all partials for resources 2016-09-22 12:43:57 +00:00
			`The following Powershell script:`

			`script = <<-EOH`
			`Write-Output 'hello'`
			`EOH`

			`can be tested in the following ways.`

			`For a newline:`

			`describe powershell(script) do`
			`its('stdout') { should eq "hello\r\n" }`
			`its('stderr') { should eq '' }`
			`end`

			Removing whitespace `\r\n` from `stdout`:

			`describe powershell(script) do`
			`its('strip') { should eq "hello" }`
			`end`

			`No newline:`

			`describe powershell("'hello' \| Write-Host -NoNewLine") do`
			`its('stdout') { should eq 'hello' }`
			`its('stderr') { should eq '' }`
			`end`