Mirrors/inspec
2
0
Fork 0
mirror of https://github.com/inspec/inspec synced 2025-02-16 22:18:38 +00:00
Code Issues Projects Releases Packages Wiki Activity

Merge pull request #4142 from inspec/zenspider/clean_unnecessary_requires

Browse source 
Clean unnecessary requires
This commit is contained in:
Ryan Davis 2019-05-29 18:33:06 -07:00 committed by GitHub
commit 4790e288a0
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
300 changed files with 824 additions and 217 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

1
lib/inspec.rb
View file

@ -28,3 +28,4 @@ require 'inspec/base_cli'
require 'inspec/fetcher' require 'inspec/fetcher'
require 'inspec/source_reader' require 'inspec/source_reader'
require 'inspec/resource' require 'inspec/resource'
require 'inspec/resources'

3
lib/inspec/config.rb
View file

@ -4,6 +4,9 @@
require 'pp' require 'pp'
require 'stringio' require 'stringio'
require 'forwardable' require 'forwardable'
require 'thor'
require 'base64'
require 'inspec/base_cli'
module Inspec module Inspec
class Config class Config

118
lib/inspec/resource.rb
View file

@ -81,121 +81,3 @@ end
# Many resources use FilterTable. # Many resources use FilterTable.
require 'inspec/utils/filter' require 'inspec/utils/filter'
# Detect if we are running the stripped-down inspec-core
# This relies on AWS being stripped from the inspec-core gem
inspec_core_only = !File.exist?(File.join(File.dirname(__FILE__), '..', 'resource_support', 'aws.rb'))
# Do not attempt to load cloud resources if we are in inspec-core mode
unless inspec_core_only
require 'resource_support/aws'
require 'resources/azure/azure_backend.rb'
require 'resources/azure/azure_generic_resource.rb'
require 'resources/azure/azure_resource_group.rb'
require 'resources/azure/azure_virtual_machine.rb'
require 'resources/azure/azure_virtual_machine_data_disk.rb'
end
require 'inspec/resources/aide_conf'
require 'inspec/resources/apache'
require 'inspec/resources/apache_conf'
require 'inspec/resources/apt'
require 'inspec/resources/audit_policy'
require 'inspec/resources/auditd'
require 'inspec/resources/auditd_conf'
require 'inspec/resources/bash'
require 'inspec/resources/bond'
require 'inspec/resources/bridge'
require 'inspec/resources/chocolatey_package'
require 'inspec/resources/command'
require 'inspec/resources/cran'
require 'inspec/resources/cpan'
require 'inspec/resources/crontab'
require 'inspec/resources/dh_params'
require 'inspec/resources/directory'
require 'inspec/resources/docker'
require 'inspec/resources/docker_container'
require 'inspec/resources/docker_image'
require 'inspec/resources/docker_plugin'
require 'inspec/resources/docker_service'
require 'inspec/resources/elasticsearch'
require 'inspec/resources/etc_fstab'
require 'inspec/resources/etc_group'
require 'inspec/resources/etc_hosts_allow_deny'
require 'inspec/resources/etc_hosts'
require 'inspec/resources/file'
require 'inspec/resources/filesystem'
require 'inspec/resources/firewalld'
require 'inspec/resources/gem'
require 'inspec/resources/groups'
require 'inspec/resources/grub_conf'
require 'inspec/resources/host'
require 'inspec/resources/http'
require 'inspec/resources/iis_app'
require 'inspec/resources/iis_app_pool'
require 'inspec/resources/iis_site'
require 'inspec/resources/inetd_conf'
require 'inspec/resources/interface'
require 'inspec/resources/iptables'
require 'inspec/resources/kernel_module'
require 'inspec/resources/kernel_parameter'
require 'inspec/resources/key_rsa'
require 'inspec/resources/ksh'
require 'inspec/resources/limits_conf'
require 'inspec/resources/login_def'
require 'inspec/resources/mount'
require 'inspec/resources/mssql_session'
require 'inspec/resources/mysql'
require 'inspec/resources/mysql_conf'
require 'inspec/resources/mysql_session'
require 'inspec/resources/nginx'
require 'inspec/resources/nginx_conf'
require 'inspec/resources/npm'
require 'inspec/resources/ntp_conf'
require 'inspec/resources/oneget'
require 'inspec/resources/oracledb_session'
require 'inspec/resources/os'
require 'inspec/resources/os_env'
require 'inspec/resources/package'
require 'inspec/resources/packages'
require 'inspec/resources/parse_config'
require 'inspec/resources/passwd'
require 'inspec/resources/pip'
require 'inspec/resources/platform'
require 'inspec/resources/port'
require 'inspec/resources/postgres'
require 'inspec/resources/postgres_conf'
require 'inspec/resources/postgres_hba_conf'
require 'inspec/resources/postgres_ident_conf'
require 'inspec/resources/postgres_session'
require 'inspec/resources/powershell'
require 'inspec/resources/processes'
require 'inspec/resources/rabbitmq_conf'
require 'inspec/resources/registry_key'
require 'inspec/resources/security_identifier'
require 'inspec/resources/security_policy'
require 'inspec/resources/service'
require 'inspec/resources/shadow'
require 'inspec/resources/ssh_conf'
require 'inspec/resources/ssl'
require 'inspec/resources/sys_info'
require 'inspec/resources/toml'
require 'inspec/resources/users'
require 'inspec/resources/vbscript'
require 'inspec/resources/virtualization'
require 'inspec/resources/windows_feature'
require 'inspec/resources/windows_hotfix'
require 'inspec/resources/windows_task'
require 'inspec/resources/wmi'
require 'inspec/resources/x509_certificate'
require 'inspec/resources/xinetd'
require 'inspec/resources/yum'
require 'inspec/resources/zfs_dataset'
require 'inspec/resources/zfs_pool'
# file formats, depend on json implementation
require 'inspec/resources/json'
require 'inspec/resources/yaml'
require 'inspec/resources/csv'
require 'inspec/resources/ini'
require 'inspec/resources/xml'

119
lib/inspec/resources.rb Normal file
View file

@ -0,0 +1,119 @@
require 'inspec/resource'
# Detect if we are running the stripped-down inspec-core
# This relies on AWS being stripped from the inspec-core gem
inspec_core_only = !File.exist?(File.join(File.dirname(__FILE__), '..', 'resource_support', 'aws.rb'))
# Do not attempt to load cloud resources if we are in inspec-core mode
unless inspec_core_only
require 'resource_support/aws'
require 'resources/azure/azure_backend.rb'
require 'resources/azure/azure_generic_resource.rb'
require 'resources/azure/azure_resource_group.rb'
require 'resources/azure/azure_virtual_machine.rb'
require 'resources/azure/azure_virtual_machine_data_disk.rb'
end
require 'inspec/resources/aide_conf'
require 'inspec/resources/apache'
require 'inspec/resources/apache_conf'
require 'inspec/resources/apt'
require 'inspec/resources/audit_policy'
require 'inspec/resources/auditd'
require 'inspec/resources/auditd_conf'
require 'inspec/resources/bash'
require 'inspec/resources/bond'
require 'inspec/resources/bridge'
require 'inspec/resources/chocolatey_package'
require 'inspec/resources/command'
require 'inspec/resources/cran'
require 'inspec/resources/cpan'
require 'inspec/resources/crontab'
require 'inspec/resources/dh_params'
require 'inspec/resources/directory'
require 'inspec/resources/docker'
require 'inspec/resources/docker_container'
require 'inspec/resources/docker_image'
require 'inspec/resources/docker_plugin'
require 'inspec/resources/docker_service'
require 'inspec/resources/elasticsearch'
require 'inspec/resources/etc_fstab'
require 'inspec/resources/etc_group'
require 'inspec/resources/etc_hosts_allow_deny'
require 'inspec/resources/etc_hosts'
require 'inspec/resources/file'
require 'inspec/resources/filesystem'
require 'inspec/resources/firewalld'
require 'inspec/resources/gem'
require 'inspec/resources/groups'
require 'inspec/resources/grub_conf'
require 'inspec/resources/host'
require 'inspec/resources/http'
require 'inspec/resources/iis_app'
require 'inspec/resources/iis_app_pool'
require 'inspec/resources/iis_site'
require 'inspec/resources/inetd_conf'
require 'inspec/resources/interface'
require 'inspec/resources/iptables'
require 'inspec/resources/kernel_module'
require 'inspec/resources/kernel_parameter'
require 'inspec/resources/key_rsa'
require 'inspec/resources/ksh'
require 'inspec/resources/limits_conf'
require 'inspec/resources/login_defs'
require 'inspec/resources/mount'
require 'inspec/resources/mssql_session'
require 'inspec/resources/mysql'
require 'inspec/resources/mysql_conf'
require 'inspec/resources/mysql_session'
require 'inspec/resources/nginx'
require 'inspec/resources/nginx_conf'
require 'inspec/resources/npm'
require 'inspec/resources/ntp_conf'
require 'inspec/resources/oneget'
require 'inspec/resources/oracledb_session'
require 'inspec/resources/os'
require 'inspec/resources/os_env'
require 'inspec/resources/package'
require 'inspec/resources/packages'
require 'inspec/resources/parse_config'
require 'inspec/resources/passwd'
require 'inspec/resources/pip'
require 'inspec/resources/platform'
require 'inspec/resources/port'
require 'inspec/resources/postgres'
require 'inspec/resources/postgres_conf'
require 'inspec/resources/postgres_hba_conf'
require 'inspec/resources/postgres_ident_conf'
require 'inspec/resources/postgres_session'
require 'inspec/resources/powershell'
require 'inspec/resources/processes'
require 'inspec/resources/rabbitmq_config'
require 'inspec/resources/registry_key'
require 'inspec/resources/security_identifier'
require 'inspec/resources/security_policy'
require 'inspec/resources/service'
require 'inspec/resources/shadow'
require 'inspec/resources/ssh_config'
require 'inspec/resources/ssl'
require 'inspec/resources/sys_info'
require 'inspec/resources/toml'
require 'inspec/resources/users'
require 'inspec/resources/vbscript'
require 'inspec/resources/virtualization'
require 'inspec/resources/windows_feature'
require 'inspec/resources/windows_hotfix'
require 'inspec/resources/windows_task'
require 'inspec/resources/wmi'
require 'inspec/resources/x509_certificate'
require 'inspec/resources/xinetd_conf'
require 'inspec/resources/yum'
require 'inspec/resources/zfs_dataset'
require 'inspec/resources/zfs_pool'
# file formats, depend on json implementation
require 'inspec/resources/json'
require 'inspec/resources/yaml'
require 'inspec/resources/csv'
require 'inspec/resources/ini'
require 'inspec/resources/xml'

1
lib/inspec/resources/apt.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
# Verifies apt and ppa repositories # Verifies apt and ppa repositories
# #

2
lib/inspec/resources/audit_policy.rb
View file

@ -1,3 +1,5 @@
require 'inspec/resources/command'
# copyright: 2015, Vulcano Security GmbH # copyright: 2015, Vulcano Security GmbH
# Advanced Auditing: # Advanced Auditing:

2
lib/inspec/resources/bond.rb
View file

@ -1,6 +1,6 @@
require 'inspec/resources/file' require 'inspec/resources/file'
require 'inspec/utils/file_reader' require 'inspec/utils/file_reader'
require 'inspec/utils/simpleconfig'
module Inspec::Resources module Inspec::Resources
class Bond < FileResource class Bond < FileResource

1
lib/inspec/resources/bridge.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/file'
# Usage: # Usage:
# describe bridge('br0') do # describe bridge('br0') do

3
lib/inspec/resources/chocolatey_package.rb
View file

@ -1,5 +1,8 @@
# frozen_string_literal: true # frozen_string_literal: true
require 'inspec/resources/command'
require 'inspec/resources/powershell'
# Check for Chocolatey packages to be installed # Check for Chocolatey packages to be installed
module Inspec::Resources module Inspec::Resources
class ChocoPkg < Inspec.resource(1) class ChocoPkg < Inspec.resource(1)

1
lib/inspec/resources/cpan.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
# Usage: # Usage:
# describe cpan('DBD::Pg') do # describe cpan('DBD::Pg') do

1
lib/inspec/resources/cran.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
# Usage: # Usage:
# describe cran('DBI') do # describe cran('DBI') do

2
lib/inspec/resources/crontab.rb
View file

@ -1,4 +1,4 @@
require 'inspec/resources/file'
require 'inspec/utils/parser' require 'inspec/utils/parser'
require 'inspec/utils/filter' require 'inspec/utils/filter'

1
lib/inspec/resources/csv.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/json'
# Parses a csv document # Parses a csv document
# This implementation was inspired by a blog post # This implementation was inspired by a blog post

1
lib/inspec/resources/docker.rb
View file

@ -2,6 +2,7 @@
# Copyright 2017, Christoph Hartmann # Copyright 2017, Christoph Hartmann
# #
require 'inspec/resources/command'
require 'inspec/utils/filter' require 'inspec/utils/filter'
require 'hashie/mash' require 'hashie/mash'

1
lib/inspec/resources/docker_container.rb
View file

@ -1,6 +1,7 @@
# #
# Copyright 2017, Christoph Hartmann # Copyright 2017, Christoph Hartmann
require 'inspec/resources/docker'
require_relative 'docker_object' require_relative 'docker_object'
module Inspec::Resources module Inspec::Resources

1
lib/inspec/resources/docker_image.rb
View file

@ -1,6 +1,7 @@
# #
# Copyright 2017, Christoph Hartmann # Copyright 2017, Christoph Hartmann
require 'inspec/resources/docker'
require_relative 'docker_object' require_relative 'docker_object'
module Inspec::Resources module Inspec::Resources

1
lib/inspec/resources/docker_plugin.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/docker'
module Inspec::Resources module Inspec::Resources
class DockerPlugin < Inspec.resource(1) class DockerPlugin < Inspec.resource(1)

1
lib/inspec/resources/docker_service.rb
View file

@ -1,6 +1,7 @@
# #
# Copyright 2017, Christoph Hartmann # Copyright 2017, Christoph Hartmann
require 'inspec/resources/docker'
require_relative 'docker_object' require_relative 'docker_object'
module Inspec::Resources module Inspec::Resources

2
lib/inspec/resources/file.rb
View file

@ -1,6 +1,7 @@
# copyright: 2015, Vulcano Security GmbH # copyright: 2015, Vulcano Security GmbH
require 'shellwords' require 'shellwords'
require 'inspec/utils/parser'
module Inspec::Resources module Inspec::Resources
module FilePermissionsSelector module FilePermissionsSelector
@ -13,6 +14,7 @@ module Inspec::Resources
end end
end end
# TODO: rename file_resource.rb
class FileResource < Inspec.resource(1) class FileResource < Inspec.resource(1)
include FilePermissionsSelector include FilePermissionsSelector
include LinuxMountParser include LinuxMountParser

2
lib/inspec/resources/filesystem.rb
View file

@ -1,3 +1,5 @@
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class FileSystemResource < Inspec.resource(1) class FileSystemResource < Inspec.resource(1)
name 'filesystem' name 'filesystem'

1
lib/inspec/resources/firewalld.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class FirewallD < Inspec.resource(1) class FirewallD < Inspec.resource(1)

1
lib/inspec/resources/gem.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class GemPackage < Inspec.resource(1) class GemPackage < Inspec.resource(1)

4
lib/inspec/resources/groups.rb
View file

@ -1,4 +1,6 @@
require 'inspec/resources/etc_group'
require 'inspec/resources/powershell'
require 'inspec/resources/parse_config'
require 'inspec/utils/filter' require 'inspec/utils/filter'
module Inspec::Resources module Inspec::Resources

1
lib/inspec/resources/host.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
# Usage: # Usage:
# describe host('example.com') do # describe host('example.com') do

1
lib/inspec/resources/http.rb
View file

@ -2,6 +2,7 @@
# copyright: 2017, Chef Software Inc # copyright: 2017, Chef Software Inc
# license: Apache v2 # license: Apache v2
require 'inspec/resources/command'
require 'faraday' require 'faraday'
require 'faraday_middleware' require 'faraday_middleware'
require 'hashie' require 'hashie'

3
lib/inspec/resources/iis_app_pool.rb
View file

@ -1,4 +1,7 @@
# frozen_string_literal: true # frozen_string_literal: true
require 'inspec/resources/powershell'
# check for web applications in IIS # check for web applications in IIS
# Note: this is only supported in windows 2012 and later # Note: this is only supported in windows 2012 and later

3
lib/inspec/resources/iis_site.rb
View file

@ -1,4 +1,7 @@
# frozen_string_literal: true # frozen_string_literal: true
require 'inspec/resources/command'
# check for site in IIS # check for site in IIS
# Usage: # Usage:
# describe iis_site('Default Web Site') do # describe iis_site('Default Web Site') do

2
lib/inspec/resources/ini.rb
View file

@ -1,4 +1,4 @@
require 'inspec/resources/json'
require 'inspec/utils/simpleconfig' require 'inspec/utils/simpleconfig'
module Inspec::Resources module Inspec::Resources

3
lib/inspec/resources/interface.rb
View file

@ -1,5 +1,6 @@
require 'inspec/resources/command'
require 'inspec/utils/convert' require 'inspec/utils/convert'
require 'inspec/utils/simpleconfig'
module Inspec::Resources module Inspec::Resources
class NetworkInterface < Inspec.resource(1) class NetworkInterface < Inspec.resource(1)

1
lib/inspec/resources/iptables.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
# Usage: # Usage:
# describe iptables do # describe iptables do

1
lib/inspec/resources/kernel_module.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class KernelModule < Inspec.resource(1) class KernelModule < Inspec.resource(1)

1
lib/inspec/resources/kernel_parameter.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class KernelParameter < Inspec.resource(1) class KernelParameter < Inspec.resource(1)

2
lib/inspec/resources/login_def.rb → lib/inspec/resources/login_defs.rb
View file

@ -16,7 +16,7 @@ require 'inspec/utils/file_reader'
# end # end
module Inspec::Resources module Inspec::Resources
class LoginDef < Inspec.resource(1) class LoginDefs < Inspec.resource(1)
name 'login_defs' name 'login_defs'
supports platform: 'unix' supports platform: 'unix'
desc 'Use the login_defs InSpec audit resource to test configuration settings in the /etc/login.defs file. The logins.defs file defines site-specific configuration for the shadow password suite on Linux and UNIX platforms, such as password expiration ranges, minimum/maximum values for automatic selection of user and group identifiers, or the method with which passwords are encrypted.' desc 'Use the login_defs InSpec audit resource to test configuration settings in the /etc/login.defs file. The logins.defs file defines site-specific configuration for the shadow password suite on Linux and UNIX platforms, such as password expiration ranges, minimum/maximum values for automatic selection of user and group identifiers, or the method with which passwords are encrypted.'

3
lib/inspec/resources/mount.rb
View file

@ -1,6 +1,3 @@
require 'inspec/utils/simpleconfig'
module Inspec::Resources module Inspec::Resources
class Mount < Inspec.resource(1) class Mount < Inspec.resource(1)
name 'mount' name 'mount'

2
lib/inspec/resources/mssql_session.rb
View file

@ -1,4 +1,4 @@
require 'inspec/resources/command'
require 'hashie/mash' require 'hashie/mash'
require 'inspec/utils/database_helpers' require 'inspec/utils/database_helpers'

1
lib/inspec/resources/mysql_session.rb
View file

@ -1,5 +1,6 @@
# copyright: 2015, Vulcano Security GmbH # copyright: 2015, Vulcano Security GmbH
require 'inspec/resources/command'
require 'shellwords' require 'shellwords'
module Inspec::Resources module Inspec::Resources

1
lib/inspec/resources/nginx.rb
View file

@ -1,6 +1,7 @@
require 'pathname' require 'pathname'
require 'hashie/mash' require 'hashie/mash'
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class Nginx < Inspec.resource(1) class Nginx < Inspec.resource(1)

3
lib/inspec/resources/nginx_conf.rb
View file

@ -174,7 +174,7 @@ module Inspec::Resources
end end
end end
class NginxConfServer class NginxConfServer # TODO: rename NginxServer
attr_reader :params, :parent attr_reader :params, :parent
def initialize(params, parent) def initialize(params, parent)
@parent = parent @parent = parent
@ -216,6 +216,7 @@ module Inspec::Resources
def to_s def to_s
location = Array(params['_']).join(' ') location = Array(params['_']).join(' ')
# go three levels up: 1. to the server entry, 2. http entry and 3. to the root nginx conf # go three levels up: 1. to the server entry, 2. http entry and 3. to the root nginx conf
# TODO: fix parent.parent.parent
@parent.parent.parent.to_s + ", location #{location.inspect}" @parent.parent.parent.to_s + ", location #{location.inspect}"
end end
alias inspect to_s alias inspect to_s

2
lib/inspec/resources/npm.rb
View file

@ -1,4 +1,4 @@
require 'inspec/resources/command'
require 'shellwords' require 'shellwords'
module Inspec::Resources module Inspec::Resources

1
lib/inspec/resources/oneget.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
# This resource talks with OneGet (https://github.com/OneGet/oneget) # This resource talks with OneGet (https://github.com/OneGet/oneget)
# Its part of Windows Management Framework 5.0 and part of Windows 10 # Its part of Windows Management Framework 5.0 and part of Windows 10

2
lib/inspec/resources/oracledb_session.rb
View file

@ -1,4 +1,4 @@
require 'inspec/resources/command'
require 'hashie/mash' require 'hashie/mash'
require 'inspec/utils/database_helpers' require 'inspec/utils/database_helpers'
require 'htmlentities' require 'htmlentities'

1
lib/inspec/resources/os.rb
View file

@ -1,4 +1,3 @@
require 'inspec/resources/platform' require 'inspec/resources/platform'
module Inspec::Resources module Inspec::Resources

2
lib/inspec/resources/package.rb
View file

@ -1,3 +1,5 @@
require 'inspec/resources/directory'
require 'inspec/utils/simpleconfig'
# Resource to determine package information # Resource to determine package information
# #

1
lib/inspec/resources/packages.rb
View file

@ -1,6 +1,7 @@
# copyright: 2017, Chef Software, Inc. <legal@chef.io> # copyright: 2017, Chef Software, Inc. <legal@chef.io>
require 'inspec/utils/filter' require 'inspec/utils/filter'
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class Packages < Inspec.resource(1) class Packages < Inspec.resource(1)

1
lib/inspec/resources/parse_config.rb
View file

@ -10,6 +10,7 @@
# describe parse_config(audit, options ) do # describe parse_config(audit, options ) do
require 'inspec/utils/file_reader' require 'inspec/utils/file_reader'
require 'inspec/utils/simpleconfig'
module Inspec::Resources module Inspec::Resources
class PConfig < Inspec.resource(1) class PConfig < Inspec.resource(1)

3
lib/inspec/resources/pip.rb
View file

@ -1,9 +1,10 @@
require 'inspec/resources/command'
require 'inspec/utils/simpleconfig'
# Usage: # Usage:
# describe pip('Jinja2') do # describe pip('Jinja2') do
# it { should be_installed } # it { should be_installed }
# end # end
#
module Inspec::Resources module Inspec::Resources
class PipPackage < Inspec.resource(1) class PipPackage < Inspec.resource(1)

9
lib/inspec/resources/powershell.rb
View file

@ -1,7 +1,8 @@
# copyright: 2015, Vulcano Security GmbH # copyright: 2015, Vulcano Security GmbH
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class PowershellScript < Cmd class Powershell < Cmd
name 'powershell' name 'powershell'
supports platform: 'windows' supports platform: 'windows'
supports platform: 'unix' supports platform: 'unix'
@ -50,8 +51,10 @@ module Inspec::Resources
end end
end end
PowershellScript = Powershell
# this is deprecated syntax and will be removed in future versions # this is deprecated syntax and will be removed in future versions
class LegacyPowershellScript < PowershellScript class LegacyPowershell < Powershell
name 'script' name 'script'
def initialize(script) def initialize(script)
@ -59,4 +62,6 @@ module Inspec::Resources
super(script) super(script)
end end
end end
LegacyPowershellScript = LegacyPowershell
end end

1
lib/inspec/resources/processes.rb
View file

@ -2,6 +2,7 @@
require 'inspec/utils/filter' require 'inspec/utils/filter'
require 'ostruct' require 'ostruct'
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class Processes < Inspec.resource(1) class Processes < Inspec.resource(1)

4
lib/inspec/resources/rabbitmq_conf.rb → lib/inspec/resources/rabbitmq_config.rb
View file

@ -1,9 +1,9 @@
require 'inspec/utils/erlang_parser' require 'inspec/utils/erlang_parser'
require 'inspec/utils/file_reader' require 'inspec/utils/file_reader'
module Inspec::Resources module Inspec::Resources
class RabbitmqConf < Inspec.resource(1) class RabbitmqConfig < Inspec.resource(1)
name 'rabbitmq_conf' # TODO: this is an alias. do we want this?
name 'rabbitmq_config' name 'rabbitmq_config'
supports platform: 'unix' supports platform: 'unix'
desc 'Use the rabbitmq_config InSpec resource to test configuration data '\ desc 'Use the rabbitmq_config InSpec resource to test configuration data '\

1
lib/inspec/resources/registry_key.rb
View file

@ -1,6 +1,7 @@
# copyright: 2015, Vulcano Security GmbH # copyright: 2015, Vulcano Security GmbH
require 'json' require 'json'
require 'inspec/resources/powershell'
# Three constructor methods are available: # Three constructor methods are available:
# 1. resistry_key(path'): # 1. resistry_key(path'):

1
lib/inspec/resources/script.rb Normal file
View file

@ -0,0 +1 @@
require 'inspec/resources/powershell'

2
lib/inspec/resources/security_identifier.rb
View file

@ -1,5 +1,7 @@
# frozen_string_literal: true # frozen_string_literal: true
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class SecurityIdentifier < Inspec.resource(1) class SecurityIdentifier < Inspec.resource(1)
name 'security_identifier' name 'security_identifier'

2
lib/inspec/resources/security_policy.rb
View file

@ -11,6 +11,8 @@
# parameters. Therefore we need a combination of Registry and secedit output # parameters. Therefore we need a combination of Registry and secedit output
require 'hashie' require 'hashie'
require 'inspec/resources/command'
require 'inspec/utils/simpleconfig'
module Inspec::Resources module Inspec::Resources
# known and supported MS privilege rights # known and supported MS privilege rights

2
lib/inspec/resources/service.rb
View file

@ -1,6 +1,6 @@
require 'hashie' require 'hashie'
require 'inspec/utils/file_reader' require 'inspec/utils/file_reader'
require 'inspec/utils/simpleconfig'
module Inspec::Resources module Inspec::Resources
class Runlevels < Hash class Runlevels < Hash

4
lib/inspec/resources/ssh_conf.rb → lib/inspec/resources/ssh_config.rb
View file

@ -4,7 +4,7 @@ require 'inspec/utils/simpleconfig'
require 'inspec/utils/file_reader' require 'inspec/utils/file_reader'
module Inspec::Resources module Inspec::Resources
class SshConf < Inspec.resource(1) class SshConfig < Inspec.resource(1)
name 'ssh_config' name 'ssh_config'
supports platform: 'unix' supports platform: 'unix'
desc 'Use the `ssh_config` InSpec audit resource to test OpenSSH client configuration data located at `/etc/ssh/ssh_config` on Linux and Unix platforms.' desc 'Use the `ssh_config` InSpec audit resource to test OpenSSH client configuration data located at `/etc/ssh/ssh_config` on Linux and Unix platforms.'
@ -75,7 +75,7 @@ module Inspec::Resources
end end
end end
class SshdConf < SshConf class SshdConfig < SshConfig
name 'sshd_config' name 'sshd_config'
supports platform: 'unix' supports platform: 'unix'
desc 'Use the sshd_config InSpec audit resource to test configuration data for the Open SSH daemon located at /etc/ssh/sshd_config on Linux and UNIX platforms. sshd---the Open SSH daemon---listens on dedicated ports, starts a daemon for each incoming connection, and then handles encryption, authentication, key exchanges, command execution, and data exchanges.' desc 'Use the sshd_config InSpec audit resource to test configuration data for the Open SSH daemon located at /etc/ssh/sshd_config on Linux and UNIX platforms. sshd---the Open SSH daemon---listens on dedicated ports, starts a daemon for each incoming connection, and then handles encryption, authentication, key exchanges, command execution, and data exchanges.'

3
lib/inspec/resources/sys_info.rb
View file

@ -1,3 +1,6 @@
require 'inspec/resources/command'
require 'inspec/resources/powershell'
module Inspec::Resources module Inspec::Resources
# this resource returns additional system informatio # this resource returns additional system informatio
class System < Inspec.resource(1) class System < Inspec.resource(1)

3
lib/inspec/resources/users.rb
View file

@ -1,7 +1,8 @@
require 'inspec/utils/parser' require 'inspec/utils/parser'
require 'inspec/utils/convert' require 'inspec/utils/convert'
require 'inspec/utils/filter' require 'inspec/utils/filter'
require 'inspec/utils/simpleconfig'
require 'inspec/resources/powershell'
module Inspec::Resources module Inspec::Resources
# This file contains two resources, the `user` and `users` resource. # This file contains two resources, the `user` and `users` resource.

4
lib/inspec/resources/vbscript.rb
View file

@ -1,4 +1,4 @@
require 'inspec/resources/powershell'
require 'securerandom' require 'securerandom'
module Inspec::Resources module Inspec::Resources
@ -18,7 +18,7 @@ module Inspec::Resources
# Since Windows does not delete tmp files automatically, we remove the VBScript # Since Windows does not delete tmp files automatically, we remove the VBScript
# after we executed it # after we executed it
# @see https://msdn.microsoft.com/en-us/library/aa364991.aspx # @see https://msdn.microsoft.com/en-us/library/aa364991.aspx
class VBScript < PowershellScript class VBScript < Powershell
name 'vbscript' name 'vbscript'
supports platform: 'windows' supports platform: 'windows'
desc '' desc ''

1
lib/inspec/resources/windows_feature.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class WindowsFeature < Inspec.resource(1) class WindowsFeature < Inspec.resource(1)

1
lib/inspec/resources/windows_hotfix.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/powershell'
module Inspec::Resources module Inspec::Resources
class WindowsHotfix < Inspec.resource(1) class WindowsHotfix < Inspec.resource(1)

4
lib/inspec/resources/windows_task.rb
View file

@ -1,5 +1,7 @@
require 'inspec/resources/powershell'
module Inspec::Resources module Inspec::Resources
class WindowsTasks < Inspec.resource(1) class WindowsTasks < Inspec.resource(1) # TODO: rename singular
name 'windows_task' name 'windows_task'
supports platform: 'windows' supports platform: 'windows'
desc 'Use the windows_task InSpec audit resource to test task schedules on Microsoft Windows.' desc 'Use the windows_task InSpec audit resource to test task schedules on Microsoft Windows.'

2
lib/inspec/resources/wmi.rb
View file

@ -1,4 +1,4 @@
require 'inspec/resources/powershell'
require 'inspec/utils/object_traversal' require 'inspec/utils/object_traversal'
module Inspec::Resources module Inspec::Resources

0
lib/inspec/resources/xinetd.rb → lib/inspec/resources/xinetd_conf.rb
View file

1
lib/inspec/resources/xml.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/json'
module Inspec::Resources module Inspec::Resources
class XmlConfig < JsonConfig class XmlConfig < JsonConfig

1
lib/inspec/resources/yaml.rb
View file

@ -1,5 +1,6 @@
require 'yaml' require 'yaml'
require 'inspec/resources/json'
# Parses a yaml document # Parses a yaml document
# Usage: # Usage:

1
lib/inspec/resources/yum.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
# Usage: # Usage:
# describe yum do # describe yum do

1
lib/inspec/resources/zfs_dataset.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class ZfsDataset < Inspec.resource(1) class ZfsDataset < Inspec.resource(1)

1
lib/inspec/resources/zfs_pool.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/command'
module Inspec::Resources module Inspec::Resources
class ZfsPool < Inspec.resource(1) class ZfsPool < Inspec.resource(1)

2
lib/inspec/rule.rb
View file

@ -3,6 +3,8 @@
require 'method_source' require 'method_source'
require 'inspec/describe' require 'inspec/describe'
require 'inspec/expect' require 'inspec/expect'
require 'inspec/resource'
require 'inspec/resources/os'
module Inspec module Inspec
class Rule class Rule

1
lib/inspec/runner.rb
View file

@ -9,6 +9,7 @@ require 'inspec/metadata'
require 'inspec/config' require 'inspec/config'
require 'inspec/dependencies/cache' require 'inspec/dependencies/cache'
require 'inspec/dist' require 'inspec/dist'
require 'inspec/reporters'
require 'inspec/runner_rspec' require 'inspec/runner_rspec'
# spec requirements # spec requirements

2
lib/inspec/shell.rb
View file

@ -117,7 +117,7 @@ module Inspec
end end
elsif topic == 'matchers' elsif topic == 'matchers'
print_matchers_help print_matchers_help
elsif !Inspec::Resource.registry[topic].nil? elsif !Inspec::Resource.registry[topic].nil? # TODO: fix unnecessary logic
topic_info = Inspec::Resource.registry[topic] topic_info = Inspec::Resource.registry[topic]
info = "#{mark 'Name:'} #{topic}\n\n" info = "#{mark 'Name:'} #{topic}\n\n"
unless topic_info.desc.nil? unless topic_info.desc.nil?

1
lib/inspec/utils/file_reader.rb
View file

@ -1,3 +1,4 @@
require 'inspec/resources/file'
module FileReader module FileReader
def read_file_content(path, allow_empty = false) def read_file_content(path, allow_empty = false)

4
lib/inspec/utils/parser.rb
View file

@ -1,4 +1,6 @@
require 'inspec/resources/command'
module PasswdParser module PasswdParser
# Parse /etc/passwd files. # Parse /etc/passwd files.
# #
@ -269,3 +271,5 @@ module XinetdParser
res res
end end
end end
require 'inspec/utils/simpleconfig'

1
lib/inspec/utils/simpleconfig.rb
View file

@ -1,6 +1,7 @@
# copyright: 2015, Dominik Richter # copyright: 2015, Dominik Richter
require 'inspec/utils/parser' require 'inspec/utils/parser'
require 'hashie'
class SimpleConfig class SimpleConfig
include CommentParser include CommentParser

1
lib/plugins/inspec-compliance/lib/inspec-compliance/api.rb
View file

@ -1,4 +1,3 @@
require 'net/http' require 'net/http'
require 'uri' require 'uri'
require 'json' require 'json'

1
lib/plugins/inspec-compliance/lib/inspec-compliance/cli.rb
View file

@ -1,4 +1,3 @@
require 'inspec/dist' require 'inspec/dist'
require_relative 'api' require_relative 'api'

3
lib/resource_support/aws/aws_plural_resource_mixin.rb
View file

@ -1,3 +1,6 @@
require 'resource_support/aws/aws_resource_mixin'
require 'resource_support/aws/aws_backend_factory_mixin'
module AwsPluralResourceMixin module AwsPluralResourceMixin
include AwsResourceMixin include AwsResourceMixin
attr_reader :table attr_reader :table

3
lib/resource_support/aws/aws_singular_resource_mixin.rb
View file

@ -1,3 +1,6 @@
require 'resource_support/aws/aws_resource_mixin'
require 'resource_support/aws/aws_backend_factory_mixin'
module AwsSingularResourceMixin module AwsSingularResourceMixin
include AwsResourceMixin include AwsResourceMixin

7
lib/resources/aws/aws_billing_report.rb
View file

@ -1,3 +1,10 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-costandusagereportservice.rb'
class AwsBillingReport < Inspec.resource(1) class AwsBillingReport < Inspec.resource(1)
name 'aws_billing_report' name 'aws_billing_report'
supports platform: 'aws' supports platform: 'aws'

3
lib/resources/aws/aws_billing_reports.rb
View file

@ -1,4 +1,7 @@
require 'inspec/utils/filter' require 'inspec/utils/filter'
require 'resource_support/aws/aws_plural_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-costandusagereportservice'
class AwsBillingReports < Inspec.resource(1) class AwsBillingReports < Inspec.resource(1)
name 'aws_billing_reports' name 'aws_billing_reports'

4
lib/resources/aws/aws_cloudtrail_trail.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-cloudtrail'
class AwsCloudTrailTrail < Inspec.resource(1) class AwsCloudTrailTrail < Inspec.resource(1)
name 'aws_cloudtrail_trail' name 'aws_cloudtrail_trail'
desc 'Verifies settings for an individual AWS CloudTrail Trail' desc 'Verifies settings for an individual AWS CloudTrail Trail'

4
lib/resources/aws/aws_cloudtrail_trails.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_plural_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-cloudtrail'
class AwsCloudTrailTrails < Inspec.resource(1) class AwsCloudTrailTrails < Inspec.resource(1)
name 'aws_cloudtrail_trails' name 'aws_cloudtrail_trails'
desc 'Verifies settings for AWS CloudTrail Trails in bulk' desc 'Verifies settings for AWS CloudTrail Trails in bulk'

4
lib/resources/aws/aws_cloudwatch_alarm.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-cloudwatch'
class AwsCloudwatchAlarm < Inspec.resource(1) class AwsCloudwatchAlarm < Inspec.resource(1)
name 'aws_cloudwatch_alarm' name 'aws_cloudwatch_alarm'
desc <<~EXAMPLE desc <<~EXAMPLE

4
lib/resources/aws/aws_cloudwatch_log_metric_filter.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-cloudwatchlogs'
class AwsCloudwatchLogMetricFilter < Inspec.resource(1) class AwsCloudwatchLogMetricFilter < Inspec.resource(1)
name 'aws_cloudwatch_log_metric_filter' name 'aws_cloudwatch_log_metric_filter'
desc 'Verifies individual Cloudwatch Log Metric Filters' desc 'Verifies individual Cloudwatch Log Metric Filters'

4
lib/resources/aws/aws_config_delivery_channel.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-configservice'
class AwsConfigDeliveryChannel < Inspec.resource(1) class AwsConfigDeliveryChannel < Inspec.resource(1)
name 'aws_config_delivery_channel' name 'aws_config_delivery_channel'
desc 'Verifies settings for AWS Config Delivery Channel' desc 'Verifies settings for AWS Config Delivery Channel'

4
lib/resources/aws/aws_config_recorder.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-configservice'
class AwsConfigurationRecorder < Inspec.resource(1) class AwsConfigurationRecorder < Inspec.resource(1)
name 'aws_config_recorder' name 'aws_config_recorder'
desc 'Verifies settings for AWS Configuration Recorder' desc 'Verifies settings for AWS Configuration Recorder'

4
lib/resources/aws/aws_ebs_volume.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-ec2'
class AwsEbsVolume < Inspec.resource(1) class AwsEbsVolume < Inspec.resource(1)
name 'aws_ebs_volume' name 'aws_ebs_volume'
desc 'Verifies settings for an EBS volume' desc 'Verifies settings for an EBS volume'

4
lib/resources/aws/aws_ebs_volumes.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_plural_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-ec2'
class AwsEbsVolumes < Inspec.resource(1) class AwsEbsVolumes < Inspec.resource(1)
name 'aws_ebs_volumes' name 'aws_ebs_volumes'
desc 'Verifies settings for AWS EBS Volumes in bulk' desc 'Verifies settings for AWS EBS Volumes in bulk'

4
lib/resources/aws/aws_ec2_instance.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-ec2'
class AwsEc2Instance < Inspec.resource(1) class AwsEc2Instance < Inspec.resource(1)
name 'aws_ec2_instance' name 'aws_ec2_instance'
desc 'Verifies settings for an EC2 instance' desc 'Verifies settings for an EC2 instance'

4
lib/resources/aws/aws_ec2_instances.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_plural_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-ec2'
class AwsEc2Instances < Inspec.resource(1) class AwsEc2Instances < Inspec.resource(1)
name 'aws_ec2_instances' name 'aws_ec2_instances'
desc 'Verifies settings for AWS EC2 Instances in bulk' desc 'Verifies settings for AWS EC2 Instances in bulk'

4
lib/resources/aws/aws_ecs_cluster.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-ecs'
class AwsEcsCluster < Inspec.resource(1) class AwsEcsCluster < Inspec.resource(1)
name 'aws_ecs_cluster' name 'aws_ecs_cluster'
desc 'Verifies settings for an ECS cluster' desc 'Verifies settings for an ECS cluster'

4
lib/resources/aws/aws_eks_cluster.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-eks'
class AwsEksCluster < Inspec.resource(1) class AwsEksCluster < Inspec.resource(1)
name 'aws_eks_cluster' name 'aws_eks_cluster'
desc 'Verifies settings for an EKS cluster' desc 'Verifies settings for an EKS cluster'

4
lib/resources/aws/aws_elb.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-elasticloadbalancing'
class AwsElb < Inspec.resource(1) class AwsElb < Inspec.resource(1)
name 'aws_elb' name 'aws_elb'
desc 'Verifies settings for AWS Elastic Load Balancer' desc 'Verifies settings for AWS Elastic Load Balancer'

4
lib/resources/aws/aws_elbs.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_plural_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-elasticloadbalancing'
class AwsElbs < Inspec.resource(1) class AwsElbs < Inspec.resource(1)
name 'aws_elbs' name 'aws_elbs'
desc 'Verifies settings for AWS ELBs (classic Elastic Load Balancers) in bulk' desc 'Verifies settings for AWS ELBs (classic Elastic Load Balancers) in bulk'

4
lib/resources/aws/aws_flow_log.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-ec2'
class AwsFlowLog < Inspec.resource(1) class AwsFlowLog < Inspec.resource(1)
name 'aws_flow_log' name 'aws_flow_log'
supports platform: 'aws' supports platform: 'aws'

4
lib/resources/aws/aws_iam_access_key.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-iam'
class AwsIamAccessKey < Inspec.resource(1) class AwsIamAccessKey < Inspec.resource(1)
name 'aws_iam_access_key' name 'aws_iam_access_key'
desc 'Verifies settings for an individual IAM access key' desc 'Verifies settings for an individual IAM access key'

4
lib/resources/aws/aws_iam_access_keys.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_plural_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-iam'
class AwsIamAccessKeys < Inspec.resource(1) class AwsIamAccessKeys < Inspec.resource(1)
name 'aws_iam_access_keys' name 'aws_iam_access_keys'
desc 'Verifies settings for AWS IAM Access Keys in bulk' desc 'Verifies settings for AWS IAM Access Keys in bulk'

4
lib/resources/aws/aws_iam_group.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-iam'
class AwsIamGroup < Inspec.resource(1) class AwsIamGroup < Inspec.resource(1)
name 'aws_iam_group' name 'aws_iam_group'
desc 'Verifies settings for AWS IAM Group' desc 'Verifies settings for AWS IAM Group'

4
lib/resources/aws/aws_iam_groups.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_plural_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-iam'
class AwsIamGroups < Inspec.resource(1) class AwsIamGroups < Inspec.resource(1)
name 'aws_iam_groups' name 'aws_iam_groups'
desc 'Verifies settings for AWS IAM groups in bulk' desc 'Verifies settings for AWS IAM groups in bulk'

4
lib/resources/aws/aws_iam_password_policy.rb
View file

@ -1,3 +1,7 @@
require 'resource_support/aws/aws_singular_resource_mixin'
require 'resource_support/aws/aws_backend_base'
require 'aws-sdk-iam'
class AwsIamPasswordPolicy < Inspec.resource(1) class AwsIamPasswordPolicy < Inspec.resource(1)
name 'aws_iam_password_policy' name 'aws_iam_password_policy'
desc 'Verifies iam password policy' desc 'Verifies iam password policy'

Some files were not shown because too many files have changed in this diff Show more