Commit graph

5632 commits

Author SHA1 Message Date
Chef Expeditor
258ae72010 Bump version to 6.6.12 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2024-02-02 09:42:46 +00:00
Sonu Saha
16a74f39ae
CHEF-3162: Implement unit test for inspec-sign plugin (#6959)
* test: add unit test for inspec sign #profile_verify

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* enhance: add support for custom config dir to be used during testing

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* test: add unit test for inspec sign #keygen and #profile_sign

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* test: remove test for profile sign

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* test: add test for methods in inspec sign

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

---------

Signed-off-by: Sonu Saha <sonu.saha@progress.com>
2024-02-02 15:11:20 +05:30
Sonu Saha
d4208cb63c
CHEF-4571: Silence warning about transforming into git fetcher (#6946)
* chore: change log-level for url fetcher transformation

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* test: remove warning logs from url fetcher test

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

---------

Signed-off-by: Sonu Saha <sonu.saha@progress.com>
2024-01-24 18:34:21 +05:30
Chef Expeditor
712dad1278 Bump version to 6.6.11 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2024-01-24 13:03:19 +00:00
Vasundhara Jagdale
ebd3eeca55
CHEF-6412: Fix for virutalization resource undefined method file_read (#6947)
* Fix the undefined method file_read error which is causing virtualizaiton resource to set nil for virtualization platform check

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Adds unit test for virtualization resource detect podman container usind detect_container method.
Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

---------

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>
2024-01-24 18:32:06 +05:30
Chef Expeditor
329eafa8f9 Bump version to 6.6.10 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2024-01-24 06:41:42 +00:00
Chef Expeditor
60e8a17290 Bump version to 6.6.9 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2024-01-24 06:39:33 +00:00
Nikita Mathur
7ac0f3d9d9
Fix to capture all the tests (it/its) within a control (#6912)
Signed-off-by: Nik08 <nikita.mathur@progress.com>
2024-01-24 12:09:20 +05:30
Nikita Mathur
497fe04328
CHEF-4191 Waivers backward compatibility support with Chef Client (#6919)
* Initial commit to extend backward compatibilty support of waiver with chef client

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Changes in conditional checks using if instead of unless

Signed-off-by: Nik08 <nikita.mathur@progress.com>

---------

Signed-off-by: Nik08 <nikita.mathur@progress.com>
2024-01-24 12:08:29 +05:30
Chef Expeditor
a4d8d73e1f Bump version to 6.6.8 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2024-01-19 16:27:23 +00:00
Vasundhara Jagdale
b946f5454d
CHEF-3962: Adds ability to verify ssh keys (#6656)
* ssh_key resource file

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Initial commit for unit test for ssh_key resource

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Fix linting and added resource in resources file

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* extend the ssh key resource to use file resource properties

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Updates the ssh_key resource to get length and type of key.

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Updates unit test for ssh_key resource.

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* ADDS Docs for ssh_key resource

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Fix Review: Empty file handling

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Fixed review comments and few code refactoring for ssh_key resource

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Doc edits

Signed-off-by: Ian Maddaus <ian.maddaus@progress.com>

* Updates test

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

---------

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>
Signed-off-by: Ian Maddaus <ian.maddaus@progress.com>
Co-authored-by: Ian Maddaus <ian.maddaus@progress.com>
2024-01-19 21:56:18 +05:30
Chef Expeditor
68ca8138bd Bump version to 6.6.7 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2024-01-04 17:26:33 +00:00
Nikita Mathur
565df5073d
CHEF-8990 Remove dependency on active-support function blank? (#6914)
* Removed usage of blank? to solve active-support gem issue (Issue in inspec-core)

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Linting fix

Signed-off-by: Nik08 <nikita.mathur@progress.com>

---------

Signed-off-by: Nik08 <nikita.mathur@progress.com>
2024-01-04 12:25:26 -05:00
Chef Expeditor
070381fc69 Bump version to 6.6.6 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-12-19 08:18:20 +00:00
Chef Expeditor
325c647826 Bump version to 6.6.5 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-12-13 09:39:22 +00:00
Vasundhara Jagdale
17bd3115b2
Reduce version pinning (#6873)
* Remove pinning of version for dependencies in test environment

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Remove version pinning of minitest and html-proofer

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* html-proofer still breaks the 3.0 ruby verify pipeline so reverting the removal of version pinning for html-proofer

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Revert "Remove version pinning of minitest and html-proofer"

This reverts commit f816289f39.

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Remove the dependency on html-proofer gem as it's only used in single test.

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

---------

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>
2023-12-13 15:07:57 +05:30
Chef Expeditor
79330432ba Bump version to 6.6.4 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-12-12 15:25:49 +00:00
Chef Expeditor
2af7d1205c Bump version to 6.6.3 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-12-05 07:21:07 +00:00
Chef Expeditor
150789175d Bump version to 6.6.2 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-12-04 14:10:05 +00:00
Chef Expeditor
6118faa7ae Bump version to 6.6.1 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-11-13 14:42:16 +00:00
Sonu Saha
c245a4cd28
PATCH: Fix for broken integration of reporters for compliance-mode (#6859)
Signed-off-by: Sonu Saha <sonu.saha@progress.com>
2023-11-13 09:40:35 -05:00
Chef Expeditor
e3708cfa7d Bump version to 6.6.0 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-11-09 15:29:34 +00:00
Vasundhara Jagdale
20d0a9dc0d
CHEF-6440: Integrates audit logging feature (#6809)
* Adds cli options to enable audit log and configure the audit log

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Updated code to validate the audit log options. Audit log options are only valid for inspec exec and inspec shell command as those commands use the backend to execute commands and for file operations

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Updates cli options documentation for audit log options

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Disable audit log in test environment unless and until explicitly --enable-audit-log option is provided in test

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Rename enable-audit-log cli option to disable-audit-log

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* CHEF-8210 Enables feature preview flag for audit logging

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Revert "Disable audit log in test environment unless and until explicitly --enable-audit-log option is provided in test"

This reverts commit 50a42f0b44cf2fde6d927a00e444370cdd288a5d.

* Adds functional test for audit logging feature

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Updates cli doc for audit loggin feature flag

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Debug why audit log functional test fails in ci environment

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Revert "Rename enable-audit-log cli option to disable-audit-log"

This reverts commit d5169ec705.

* Revert "Debug why audit log functional test fails in ci environment"

This reverts commit 6f43898ad0.

* Removes the --enable-audit-log option from cli as feature flag will handle the enabling and disabling of audit log feature. And introduces few code changes after reverting renaming of --enable-audit-log option

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Updates the functional test for audit log

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* REVERT THIS ONCE THE TEST IS GREEN: This is just to test implementation of audit log against the train changes made for audit log

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Removes the right one

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Documentation for inspec audit logging feature

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Renames inspec audit log file

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Edits to audit log docs

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Remove --audit-log-rotation and --audit-log-size option to set from CLI

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Make sure we delete audit log file before running each test

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Appends timestamp and process id to generate audit log file per invocation/execution

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Updates functional test for audit logging feature

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Fix typo in audit logging docs

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Appends the timestamp and process id to user provided audit log file so that unique audit log file created per invocation

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Updates the audit log functional test

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Minor code improvements

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Adds exception class for invalid audit log options

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Revert "REVERT THIS ONCE THE TEST IS GREEN: This is just to test implementation of audit log against the train changes made for audit log"

This reverts commit a66137e70b.

* Upgrade train-core version pinning

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Docs review

Signed-off-by: Ian Maddaus <ian.maddaus@progress.com>

* Fix titles

Signed-off-by: Ian Maddaus <ian.maddaus@progress.com>

* Update the signature for features.yaml file

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

---------

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Signed-off-by: Ian Maddaus <ian.maddaus@progress.com>
Co-authored-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Co-authored-by: Ian Maddaus <ian.maddaus@progress.com>
2023-11-09 10:28:12 -05:00
Chef Expeditor
e204905e0c Bump version to 6.5.0 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-11-09 14:18:15 +00:00
Chef Expeditor
130c97cf0c Bump version to 6.4.82 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-11-09 13:22:01 +00:00
Nikita Mathur
fd4e6d97a6
CHEF-6439 Mandatory Profile Signing (Preview) (#6705)
* Updated exec option to allow unsigned profiles run

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Added method to verify signed profile and to check for signed profile

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Invoked logic on each run to verify profiles if signed else raise sig req error

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Tests cases added to validate behaviour of inspec exec with signed and unsigned profiles with --chef-allow-unsigned flag

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Refactored and moved delete_signing_keys to common helper library for tests

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Updated code comments for more information and clarity on security update of signed profiles inspec exec

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Test cases to validate inspec run with combination of signed and unsigned profiles

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Documented usage of flag --chef-allow-unsigned

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Renamed the flag to run unsigned profiles to --allow-unsigned

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Refactored logic on profile level for profile signing verification

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Renaming the argument variable - from runner_call to silent

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Added profile mandate check for other inspec commands running profile evaluation

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Updated error message for profile sign requirement

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Updated test helper to fix inspec json test

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Fixed inspec json ability to use cli options successfully

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Documentation added for signed profiles mandatory usage with CLI commands

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Flow changes of raising exception when unsigned instead of direct exit

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Renamed unsigned profile flags

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Extracted out allow unsigned condition to config and modified comment info

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Doc update on consent of using signed and unsigned profiles

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Fix in signing mandatin check and added additional check on runner for better error UI for exec command

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Removed repeated allow-unsigned-profile defination from exec_options

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Test fixes

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Enabled feature preview flag for mandatory signing

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Test fixes after feature flag usage for mandatory signing

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Doc changes using feature preview flag for mandatory signing feature

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Inspec exec tests fixes for ENV values and parallel test fix using default option --allow-unsigned-profile false

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Kitchen fix while using signed profiles with inspec

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Unit test fix for profile resource exception

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Virtual profile detection improved

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Move mandatory profile sigining info to sigining page

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Renamed flag from --allow-unsigned-profile to --allow-unsigned-profiles

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Typo fix in signing doc

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Trim note in cli.md about mandatory profile signing

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Docs changes

Signed-off-by: Ian Maddaus <ian.maddaus@progress.com>

* Correct docs regarding exit code 5

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

---------

Signed-off-by: Nik08 <nikita.mathur@progress.com>
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Signed-off-by: Ian Maddaus <ian.maddaus@progress.com>
Co-authored-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Co-authored-by: Ian Maddaus <ian.maddaus@progress.com>
2023-11-09 08:20:43 -05:00
Chef Expeditor
1a87a2a588 Bump version to 6.4.81 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-11-08 13:17:53 +00:00
Vasundhara Jagdale
ed033b9ac2
CHEF-7694 (CHEF-8271) : Fix security_policy resource returns array for non comma separated values (#6838)
* Adds unit test for more security policies

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Fix for secuity_policy resource failing if policy includes single value in string format it returns array instead of string

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

* Update code comments

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>

---------

Signed-off-by: Vasu1105 <vasundhara.jagdale@progress.com>
2023-11-08 18:46:36 +05:30
Chef Expeditor
f6f553981e Bump version to 6.4.80 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-11-07 09:47:06 +00:00
Sonu Saha
b5fcc141d2
CHEF-6437: Implement different version of inspec export (#6816)
* Failing test for export - should not evaluate

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Sketch out a info_from_parse method

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Temporary commit to checkpoint experimental work

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Basic control ids extraction

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Modify to capture entire block

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Ability to parse desc, impact and title of a control (#6662)

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Rework per-control metadata collectors to be class-based

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* REFACTOR: make a common base class for collectors

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* memoise `info_from_parse`

Signed-off-by: Sathish <sbabu@progress.com>

* Add --legacy-export option to inspec export (#6661)

* support legacy export option

Signed-off-by: Sathish <sbabu@progress.com>

* ability to run legacy export option

Signed-off-by: Sathish <sbabu@progress.com>

---------

Signed-off-by: Sathish <sbabu@progress.com>

* Improve ControlIDCollector and other fields of export data (#6686)

* Parse tags & refs from the ast nodes

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* ENHANCE: Improve Desc collector to collect description

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* ENHANCE: Only loop through the child node of begin block

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Fix bug/todo to handle duplicacy of control ids

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* TEST - a profile which fails to properly be exported but is likely to be used by MITRE

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Revert "FIX: Fix bug/todo to handle duplicacy of control ids"

This reverts commit 46d66e0026.

* Revert "ENHANCE: Only loop through the child node of begin block"

This reverts commit 47c92d8746.

* ADD: Add code key in control data

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* ADD: Add source_location key in controls data

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* HACK: Update the location ref for the controls

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Update variable name as latest changes

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Fix source location ref for all controls in a file

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Improve tagcollector to handle other data types

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Improve tagcollector to handle different types of tags

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* ENHANCE & TEST: Improve tag collector to collector different tag styles and add test for it

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* update groups

Signed-off-by: Sathish <sbabu@progress.com>

* Add yml data to export info_from_parse

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Add inputs to export data info_from_parse

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Add status and status_messages

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Initialize all control fields

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* WIP: Filter controls using --controls

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Add inputs collector class - rules remaining

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Parse inputs from dsl - 1

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* TEST: Uncomment tests to verify export

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* TEST: Include test for different desc

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* TEST: Include test for different title

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* TEST: Include test for different ref

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Default impact to 0.5 and add test

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Avoid duplicate inputs

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Add test for inputs

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* REFACTOR: Minor refactoring of tests

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Uncomment test for refs

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

---------

Signed-off-by: Sonu Saha <sonu.saha@progress.com>
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Signed-off-by: Sathish <sbabu@progress.com>
Co-authored-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Co-authored-by: Sathish <sbabu@progress.com>

* Update option to match inspec's coding standard

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Handle inputs within control block

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* TEST & ENHANCE: Enhance parser and add more tests

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Fix broken test for profile_test

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Update groups after filtering control

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Add --legacy-export support to inspec json

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* TEST: Fix broken test & fix group filters

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* DOCS: Manually update cli.md to include export cmd

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Add tag filtering support to export

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* TEST: Add test for tag and control based filtering

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* LINT: Fix lint offense

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* CHORE: Remove addressed todo and update comments

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* CHEF-6493: Support `--legacy-export` option in `inspec archive` (#6829)

* Introduce --legacy-export flag to archive command

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Add more test to verify --legacy-export with archive

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Update logic to fetch info based on --legacy-export flag

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

---------

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Enhance InputCollector to match pattern instead of to indexing children type to avoid nil errors

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Improve RefCollector to handle ref   ({:ref=>'Some ref', :url=>'https://'\}\) syntax

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Improve RefCollector and TagCollector to handle variables values from inputs/attributes

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Run inspec check using output info_from_parse (#6673)

* Add test fixture profile that emits evaluation markers on stderr

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Failing test for export - should not evaluate

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Sketch out a info_from_parse method

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Temporary commit to checkpoint experimental work

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Basic control ids extraction

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Modify to capture entire block

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Ability to parse desc, impact and title of a control (#6662)

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Rework per-control metadata collectors to be class-based

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* REFACTOR: make a common base class for collectors

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* memoise `info_from_parse`

Signed-off-by: Sathish <sbabu@progress.com>

* Add --legacy-export option to inspec export (#6661)

* support legacy export option

Signed-off-by: Sathish <sbabu@progress.com>

* ability to run legacy export option

Signed-off-by: Sathish <sbabu@progress.com>

---------

Signed-off-by: Sathish <sbabu@progress.com>

* Parse tags & refs from the ast nodes

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* ENHANCE: Improve Desc collector to collect description

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* ENHANCE: Only loop through the child node of begin block

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Fix bug/todo to handle duplicacy of control ids

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* TEST - a profile which fails to properly be exported but is likely to be used by MITRE

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Revert "FIX: Fix bug/todo to handle duplicacy of control ids"

This reverts commit 46d66e0026.

* Revert "ENHANCE: Only loop through the child node of begin block"

This reverts commit 47c92d8746.

* ADD: Add code key in control data

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* ADD: Add source_location key in controls data

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* HACK: Update the location ref for the controls

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Update variable name as latest changes

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Fix source location ref for all controls in a file

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Improve tagcollector to handle other data types

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* FIX: Improve tagcollector to handle different types of tags

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* ENHANCE & TEST: Improve tag collector to collector different tag styles and add test for it

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* update groups

Signed-off-by: Sathish <sbabu@progress.com>

* Add yml data to export info_from_parse

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Add inputs to export data info_from_parse

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Add status and status_messages

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* Initialize all control fields

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* make description `default` as a symbol

Signed-off-by: Sathish Babu <sbabu@progress.com>

* define `checks` as Set

Signed-off-by: Sathish Babu <sbabu@progress.com>

* Collect tests as part of collector
and store it in `checks`

Signed-off-by: Sathish Babu <sbabu@progress.com>

* refactor to read `ID` from controls which is an Array now unlike an Hash in `params.controls`

Signed-off-by: Sathish Babu <sbabu@progress.com>

* read yaml params from metadata

Signed-off-by: Sathish Babu <sbabu@progress.com>

* use to Array to simply DS as the o/p ie being converted to JSON

Signed-off-by: Sathish Babu <sbabu@progress.com>

* move old check as legacy check

Signed-off-by: Sathish Babu <sbabu@progress.com>

* support `legacy_check` as an option to run checks in legacy mode

Signed-off-by: Sathish Babu <sbabu@progress.com>

* fix tests to support `legacy_checks`

Signed-off-by: Sathish Babu <sbabu@progress.com>

* update document for check

Signed-off-by: Sathish Babu <sbabu@progress.com>

* Update usage doc for --legaccy-check

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

---------

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Signed-off-by: Sonu Saha <sonu.saha@progress.com>
Signed-off-by: Sathish <sbabu@progress.com>
Signed-off-by: Sathish Babu <sbabu@progress.com>
Co-authored-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Co-authored-by: Sonu Saha <98935583+ahasunos@users.noreply.github.com>
Co-authored-by: Sonu Saha <sonu.saha@progress.com>

* LINT: Fix lint offense

Signed-off-by: Sonu Saha <sonu.saha@progress.com>

* do not include tests to controls by default

Signed-off-by: Sathish Babu <sbabu@progress.com>

* generate info with tests for check

Signed-off-by: Sathish Babu <sbabu@progress.com>

---------

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Signed-off-by: Sonu Saha <sonu.saha@progress.com>
Signed-off-by: Sathish <sbabu@progress.com>
Signed-off-by: Sathish Babu <sbabu@progress.com>
Co-authored-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Co-authored-by: Sathish <sbabu@progress.com>
Co-authored-by: Sathish Babu <80091550+sathish-progress@users.noreply.github.com>
2023-11-07 15:15:45 +05:30
Chef Expeditor
00c9a38151 Bump version to 6.4.79 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-11-06 05:37:13 +00:00
Chef Expeditor
389b64408f Bump version to 6.4.78 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-10-30 16:55:13 +00:00
Nikita Mathur
0c134bca30
Usage changes of profile params in inspec compliance plugin (#6832)
Signed-off-by: Nik08 <nikita.mathur@progress.com>
2023-10-30 12:53:56 -04:00
Chef Expeditor
6fd8ce3595 Bump version to 6.4.77 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-10-30 15:39:51 +00:00
Nikita Mathur
456fa5c8f5
CHEF-7670 Ability to set feature preview flag using ENV (#6833)
* Implemented ability to add feature flags in Inspec feature subsystem

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Added usage of env_preview for conditionalising features

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Test cases added for feature preview flag ability

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Minor chnages - Better commenting & smarter methods

Signed-off-by: Nik08 <nikita.mathur@progress.com>

---------

Signed-off-by: Nik08 <nikita.mathur@progress.com>
2023-10-30 21:08:26 +05:30
Chef Expeditor
6c8ae52d1c Bump version to 6.4.76 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-10-24 16:28:35 +00:00
Chef Expeditor
8572b90f89 Bump version to 6.4.75 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-10-19 11:40:34 +00:00
Nikita Mathur
faf66ee7d8
Fixed inspec json ability to use cli options successfully (#6796)
* Fixed inspec json ability to use cli options successfully

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Code comment moved down for deprecation warning info

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Added comment on usage of config initialisation on inspec json command

Signed-off-by: Nik08 <nikita.mathur@progress.com>

---------

Signed-off-by: Nik08 <nikita.mathur@progress.com>
2023-10-19 17:09:16 +05:30
Chef Expeditor
7a878a60ed Bump version to 6.4.74 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-10-19 08:10:53 +00:00
Chef Expeditor
af9d478d78 Bump version to 6.4.73 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-10-19 07:22:58 +00:00
Nikita Mathur
1c90448b8f
Fix in html reporter to create unique id for control HTML divisions using profile id as prefix (#6645)
Signed-off-by: Nik08 <nikita.mathur@progress.com>
2023-10-19 12:51:40 +05:30
Chef Expeditor
84bcafc66f Bump version to 6.4.72 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-10-17 08:19:56 +00:00
Chef Expeditor
06bdb16529 Bump version to 6.4.71 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-10-11 16:55:43 +00:00
Chef Expeditor
4f1b83e461 Bump version to 6.4.70 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-10-11 06:36:07 +00:00
Chef Expeditor
a3534101b1 Bump version to 6.4.69 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-09-30 14:04:35 +00:00
Nikita Mathur
b360d64a1c
Changed params usage in inspec archive to skip evaluation (#6741)
* Using metadata to fetch basic info as name and version required in archive

Signed-off-by: Nik08 <nikita.mathur@progress.com>

* Typo fixes

Signed-off-by: Nik08 <nikita.mathur@progress.com>

---------

Signed-off-by: Nik08 <nikita.mathur@progress.com>
2023-09-30 19:33:36 +05:30
Chef Expeditor
da94adda32 Bump version to 6.4.68 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-09-30 02:27:43 +00:00
Chef Expeditor
8dd1b518ec Bump version to 6.4.67 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-09-30 01:36:43 +00:00
Chef Expeditor
9890f1fe54 Bump version to 6.4.66 by Chef Expeditor
Obvious fix; these changes are the result of automation not creative thinking.
2023-09-30 01:04:12 +00:00
Sathish Babu
e1d39e581a
CHEF-6422 Modify inspec archive to not check or export by default (#6659)
* make profile check optional

Signed-off-by: Sathish <sbabu@progress.com>

* Clarify error message when making inspec check optional

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Add test fixture profile that emits evaluation markers on stderr

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Make export to inspec.json optional, not enabled by default

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Add test confirming non-evaluative archive

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

* Fix failing plugin search test, failing since we published a new test gem

Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>

---------

Signed-off-by: Sathish <sbabu@progress.com>
Signed-off-by: Clinton Wolfe <clintoncwolfe@gmail.com>
Co-authored-by: Clinton Wolfe <clintoncwolfe@gmail.com>
2023-09-29 18:12:37 -04:00