Mirrors/inspec
2
0
Fork 0
mirror of https://github.com/inspec/inspec synced 2024-12-18 09:03:12 +00:00
Code Issues Projects Releases Packages Wiki Activity
59 commits 457 branches 1906 tags 76 MiB
Commit graph

14 commits

Author SHA1 Message Date
Dominik Richter
5d5b945933 feature: only_if for profiles added 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-21 18:07:35 +02:00
Dominik Richter
8026915ce5 feature: support skipping rules via resources 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-21 16:32:42 +02:00
Dominik Richter
1abfdae264 bugfix: use fully qualified profile IDs 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-20 02:21:08 +02:00
Dominik Richter
ef4471d20b feature: allow to skip rules 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-20 00:20:44 +02:00
Dominik Richter
2e1106b933 feature: add rule hierarchy with include and require rules 
include_rules 'vulcanosec/ssh'

this will include all rules defined in vulcanosec/ssh

    require_rules 'vulcanosec/linux'

this will not include any rules yet, but you may choose what you want to pull in.

both have a block attached which will allow you to choose rules (for require_rules) and redefined/change existing rules as you like. small example:

    require_rules 'vulcanosec/linux' do
      rule fs-3 do
        impact 1.0
      end
    end

Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-20 00:00:53 +02:00
Dominik Richter
a6748e2418 load rules from a spec file into a profile context 2015-06-19 22:23:07 +02:00
Dominik Richter
7649d1459c simplify global vs embedded rule handling 
i.e. one executes directly, the other just registers. this change makes such a distinction much easier

Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-19 21:52:57 +02:00
Dominik Richter
da71e1e826 move DSL helper methods out of local DSL space 
to avoid potential collissions

Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-19 21:43:04 +02:00
Dominik Richter
8181ee038e move rule execution and ID-fixing out 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-19 21:17:56 +02:00
Dominik Richter
f64f15ee6b make syntax binding to scope programmable 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-19 20:11:26 +02:00
Dominik Richter
1b36802589 feature: include other rules 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-06-18 17:32:40 +02:00
Dominik Richter
e9d642fc61 feature: replace vcheck 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-06-07 21:41:54 +02:00
Dominik Richter
f56618f364 bugfix: cascade IDs to child describe-blocks (from :its) 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-06-07 19:20:16 +02:00
Dominik Richter
64d90c326f feature: add rules with IDs 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-06-07 17:09:02 +02:00