inspec/lib/resources/npm.rb

# encoding: utf-8

require 'shellwords'

module Inspec::Resources
  class NpmPackage < Inspec.resource(1)
    name 'npm'
    supports platform: 'unix'
    supports platform: 'windows'
    desc 'Use the npm InSpec audit resource to test if a global npm package is installed. npm is the the package manager for Nodejs packages, such as bower and StatsD.'
    example "
      describe npm('bower') do
        it { should be_installed }
      end

      describe npm('tar', path: '/path/to/project') do
        it { should be_installed }
      end
    "

    def initialize(package_name, opts = {})
      @package_name = package_name
      @location = opts[:path]
      @cache = nil
    end

    def info
      return @info if defined?(@info)

      if @location
        npm = "cd #{Shellwords.escape @location} && npm"
      else
        npm = 'npm -g'
      end

      cmd = inspec.command("#{npm} ls --json #{@package_name}")
      @info = {
        name: @package_name,
        type: 'npm',
        installed: cmd.exit_status == 0,
      }
      return @info unless @info[:installed]

      pkgs = JSON.parse(cmd.stdout)
      @info[:version] = pkgs['dependencies'][@package_name]['version']
      @info
    end

    def installed?
      info[:installed] == true
    end

    def version
      info[:version]
    end

    def to_s
      "Npm Package #{@package_name}"
    end
  end
end
add npm resource to verify gem packages 2015-09-08 22:12:25 +00:00			`# encoding: utf-8`

support local npm package searches (#3105) Signed-off-by: Dominik Richter <dominik.richter@gmail.com> 2018-06-01 08:52:46 +00:00			`require 'shellwords'`

Placing all resources in the Inspec::Resources namespace Many of the resources are named as a top-level class with a fairly generic class name, such as "OS". This causes an issue specifically with kitchen-google which depends on a gem which depends on the "os" gem which itself defines an OS class with a different superclass. This prevents users from using TK, Google Compute, and Inspec without this fix. Some mocked commands had their digest changed as well due to the new indentation, specifically in the User and RegistryKey classes. I strongly recommend viewing this diff with `git diff --ignore-space-change` to see the real changes. :) 2016-03-08 18:06:55 +00:00			`module Inspec::Resources`
			`class NpmPackage < Inspec.resource(1)`
			`name 'npm'`
Add correct `supports platform` to resources. (#2674) * Add correct `supports platform` to resources. Signed-off-by: Miah Johnson <miah@chia-pet.org> * Remove 'os_family' and update platforms to specify what they did. Signed-off-by: Miah Johnson <miah@chia-pet.org> * Add esx and cisco to generic resources. Signed-off-by: Jared Quick <jquick@chef.io> 2018-02-19 14:26:49 +00:00			`supports platform: 'unix'`
			`supports platform: 'windows'`
Placing all resources in the Inspec::Resources namespace Many of the resources are named as a top-level class with a fairly generic class name, such as "OS". This causes an issue specifically with kitchen-google which depends on a gem which depends on the "os" gem which itself defines an OS class with a different superclass. This prevents users from using TK, Google Compute, and Inspec without this fix. Some mocked commands had their digest changed as well due to the new indentation, specifically in the User and RegistryKey classes. I strongly recommend viewing this diff with `git diff --ignore-space-change` to see the real changes. :) 2016-03-08 18:06:55 +00:00			`desc 'Use the npm InSpec audit resource to test if a global npm package is installed. npm is the the package manager for Nodejs packages, such as bower and StatsD.'`
			`example "`
			`describe npm('bower') do`
			`it { should be_installed }`
			`end`
support local npm package searches (#3105) Signed-off-by: Dominik Richter <dominik.richter@gmail.com> 2018-06-01 08:52:46 +00:00
			`describe npm('tar', path: '/path/to/project') do`
			`it { should be_installed }`
			`end`
Placing all resources in the Inspec::Resources namespace Many of the resources are named as a top-level class with a fairly generic class name, such as "OS". This causes an issue specifically with kitchen-google which depends on a gem which depends on the "os" gem which itself defines an OS class with a different superclass. This prevents users from using TK, Google Compute, and Inspec without this fix. Some mocked commands had their digest changed as well due to the new indentation, specifically in the User and RegistryKey classes. I strongly recommend viewing this diff with `git diff --ignore-space-change` to see the real changes. :) 2016-03-08 18:06:55 +00:00			`"`

support local npm package searches (#3105) Signed-off-by: Dominik Richter <dominik.richter@gmail.com> 2018-06-01 08:52:46 +00:00			`def initialize(package_name, opts = {})`
Placing all resources in the Inspec::Resources namespace Many of the resources are named as a top-level class with a fairly generic class name, such as "OS". This causes an issue specifically with kitchen-google which depends on a gem which depends on the "os" gem which itself defines an OS class with a different superclass. This prevents users from using TK, Google Compute, and Inspec without this fix. Some mocked commands had their digest changed as well due to the new indentation, specifically in the User and RegistryKey classes. I strongly recommend viewing this diff with `git diff --ignore-space-change` to see the real changes. :) 2016-03-08 18:06:55 +00:00			`@package_name = package_name`
support local npm package searches (#3105) Signed-off-by: Dominik Richter <dominik.richter@gmail.com> 2018-06-01 08:52:46 +00:00			`@location = opts[:path]`
Placing all resources in the Inspec::Resources namespace Many of the resources are named as a top-level class with a fairly generic class name, such as "OS". This causes an issue specifically with kitchen-google which depends on a gem which depends on the "os" gem which itself defines an OS class with a different superclass. This prevents users from using TK, Google Compute, and Inspec without this fix. Some mocked commands had their digest changed as well due to the new indentation, specifically in the User and RegistryKey classes. I strongly recommend viewing this diff with `git diff --ignore-space-change` to see the real changes. :) 2016-03-08 18:06:55 +00:00			`@cache = nil`
add inline documentation 2015-11-27 13:02:38 +00:00			`end`
add npm resource to verify gem packages 2015-09-08 22:12:25 +00:00
Placing all resources in the Inspec::Resources namespace Many of the resources are named as a top-level class with a fairly generic class name, such as "OS". This causes an issue specifically with kitchen-google which depends on a gem which depends on the "os" gem which itself defines an OS class with a different superclass. This prevents users from using TK, Google Compute, and Inspec without this fix. Some mocked commands had their digest changed as well due to the new indentation, specifically in the User and RegistryKey classes. I strongly recommend viewing this diff with `git diff --ignore-space-change` to see the real changes. :) 2016-03-08 18:06:55 +00:00			`def info`
			`return @info if defined?(@info)`
align npm resource with info handling Signed-off-by: Dominik Richter <dominik.richter@gmail.com> 2015-09-17 14:43:10 +00:00
support local npm package searches (#3105) Signed-off-by: Dominik Richter <dominik.richter@gmail.com> 2018-06-01 08:52:46 +00:00			`if @location`
			`npm = "cd #{Shellwords.escape @location} && npm"`
			`else`
			`npm = 'npm -g'`
			`end`

			`cmd = inspec.command("#{npm} ls --json #{@package_name}")`
Placing all resources in the Inspec::Resources namespace Many of the resources are named as a top-level class with a fairly generic class name, such as "OS". This causes an issue specifically with kitchen-google which depends on a gem which depends on the "os" gem which itself defines an OS class with a different superclass. This prevents users from using TK, Google Compute, and Inspec without this fix. Some mocked commands had their digest changed as well due to the new indentation, specifically in the User and RegistryKey classes. I strongly recommend viewing this diff with `git diff --ignore-space-change` to see the real changes. :) 2016-03-08 18:06:55 +00:00			`@info = {`
			`name: @package_name,`
			`type: 'npm',`
			`installed: cmd.exit_status == 0,`
			`}`
			`return @info unless @info[:installed]`
align npm resource with info handling Signed-off-by: Dominik Richter <dominik.richter@gmail.com> 2015-09-17 14:43:10 +00:00
Placing all resources in the Inspec::Resources namespace Many of the resources are named as a top-level class with a fairly generic class name, such as "OS". This causes an issue specifically with kitchen-google which depends on a gem which depends on the "os" gem which itself defines an OS class with a different superclass. This prevents users from using TK, Google Compute, and Inspec without this fix. Some mocked commands had their digest changed as well due to the new indentation, specifically in the User and RegistryKey classes. I strongly recommend viewing this diff with `git diff --ignore-space-change` to see the real changes. :) 2016-03-08 18:06:55 +00:00			`pkgs = JSON.parse(cmd.stdout)`
			`@info[:version] = pkgs['dependencies'][@package_name]['version']`
			`@info`
			`end`
add npm resource to verify gem packages 2015-09-08 22:12:25 +00:00
Placing all resources in the Inspec::Resources namespace Many of the resources are named as a top-level class with a fairly generic class name, such as "OS". This causes an issue specifically with kitchen-google which depends on a gem which depends on the "os" gem which itself defines an OS class with a different superclass. This prevents users from using TK, Google Compute, and Inspec without this fix. Some mocked commands had their digest changed as well due to the new indentation, specifically in the User and RegistryKey classes. I strongly recommend viewing this diff with `git diff --ignore-space-change` to see the real changes. :) 2016-03-08 18:06:55 +00:00			`def installed?`
			`info[:installed] == true`
			`end`
add npm resource to verify gem packages 2015-09-08 22:12:25 +00:00
Placing all resources in the Inspec::Resources namespace Many of the resources are named as a top-level class with a fairly generic class name, such as "OS". This causes an issue specifically with kitchen-google which depends on a gem which depends on the "os" gem which itself defines an OS class with a different superclass. This prevents users from using TK, Google Compute, and Inspec without this fix. Some mocked commands had their digest changed as well due to the new indentation, specifically in the User and RegistryKey classes. I strongly recommend viewing this diff with `git diff --ignore-space-change` to see the real changes. :) 2016-03-08 18:06:55 +00:00			`def version`
			`info[:version]`
			`end`
add npm resource to verify gem packages 2015-09-08 22:12:25 +00:00
Placing all resources in the Inspec::Resources namespace Many of the resources are named as a top-level class with a fairly generic class name, such as "OS". This causes an issue specifically with kitchen-google which depends on a gem which depends on the "os" gem which itself defines an OS class with a different superclass. This prevents users from using TK, Google Compute, and Inspec without this fix. Some mocked commands had their digest changed as well due to the new indentation, specifically in the User and RegistryKey classes. I strongly recommend viewing this diff with `git diff --ignore-space-change` to see the real changes. :) 2016-03-08 18:06:55 +00:00			`def to_s`
			`"Npm Package #{@package_name}"`
			`end`
add npm resource to verify gem packages 2015-09-08 22:12:25 +00:00			`end`
			`end`