Mirrors/inspec
2
0
Fork 0
mirror of https://github.com/inspec/inspec synced 2024-12-18 09:03:12 +00:00
Code Issues Projects Releases Packages Wiki Activity
827 commits 457 branches 1906 tags 76 MiB
Commit graph

275 commits

Author SHA1 Message Date
Dominik Richter
2c00423c3e read symlink destination file types 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:30 +02:00
Dominik Richter
6f4f0b570c inject specinfra backend helper into file 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:30 +02:00
Dominik Richter
5f472d9735 use lstat for local backend to read symlinks 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:30 +02:00
Dominik Richter
3e16407454 rename file link_target -> link_path 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:30 +02:00
Dominik Richter
60f9e643aa api: specinfra mtime returns unix seconds 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:30 +02:00
Dominik Richter
04a8cfddf4 ignore exit code on linux stat 
For now: Since stat throws exit code 1 on selinux label checks if no selinux label (or system) is present, it would signal us to disregard results. However, the results are actually complete and can be fully used, with selinux_label becoming "?".

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:29 +02:00
Dominik Richter
526518fabd api: set specinfra product_version + file_version to nil 
whenever the label is empty (typically on all *nix systems) set it to nil instead of ""

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:29 +02:00
Dominik Richter
55bd535599 api: specinfra set selinux label to nil 
Whenever the selinux label is empty, set it to nil instead of '?' or ''.

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:29 +02:00
Dominik Richter
534a9ce57a bugfix: always return file stat 2015-09-22 02:17:29 +02:00
Dominik Richter
c86a68950a improvement: add optimized local file module 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:29 +02:00
Christoph Hartmann
6e76dd689e bugfix: set host for ssh config in specinfra 2015-09-22 02:17:28 +02:00
Dominik Richter
8f45afffcd move up specinfra property detection 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:28 +02:00
Dominik Richter
48b25e893d bugfix: specinfra re-detect backend os 
By default it uses the currently running OS on initialization, instead of the OS configured via backend. Force its reinitialization by resetting all properties.

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:28 +02:00
Christoph Hartmann
7b5bbc8a5f patch specinfra os detection 2015-09-22 02:17:28 +02:00
Christoph Hartmann
43d49a348f bugfix: require specinfra backend 2015-09-22 02:17:28 +02:00
Dominik Richter
54b37b0b96 unify reporting on concurrent tests 
Take control of the rspec runner loop and make sure all of our concurrent tests are executed in one reporting chain. It goes: Start reporting, concurrently run container+test+kill, stop and publish reporting.

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:28 +02:00
Dominik Richter
c6f896cad3 run full docker test in parallel 
With just one more issue left: the formatter is going to report multiple time, including spitting out errors multiple times. Also need to remove some of the custom formatting around the current state of containers.

As a bonus: This further improved testing speed (30% on the current environment) and will allow us to grow the supported platforms for tests easily.

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:27 +02:00
Dominik Richter
37ad8f9531 run test setup concurrently + only once 
Instead of having RSpec re-run its world multiple times, run it only once with all tests.

Which leaves us with one more thing to solve: we want to start tests as soon as the container is up and they are set up. At the moment, the containers come up and are set up concurrently, including test registry, but the tests themselves are in simple sequence.

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:27 +02:00
Dominik Richter
eb2e18b75d remove leftover includes 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:17:27 +02:00
Dominik Richter
945dee74cc Merge pull request #10 from chef/oneget 
add oneget resource
 2015-09-22 02:17:27 +02:00
Christoph Hartmann
33f9dd8e87 add oneget resource 2015-09-22 02:17:21 +02:00
Christoph Hartmann
d0d9a66e4a move user default settings to backend 2015-09-22 02:15:43 +02:00
Dominik Richter
3e02e622c5 bugfix: linux file stat parameters and mount 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:43 +02:00
Christoph Hartmann
51fff9104b bugfix: use instance variable, include winrm 2015-09-22 02:15:43 +02:00
Christoph Hartmann
b03db74798 improvement: set default user at a later stage to support user@target 2015-09-22 02:15:43 +02:00
Dominik Richter
74da29c3ed lint vulcano lib files 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:42 +02:00
Dominik Richter
07cb7efe36 lint targets 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:42 +02:00
Dominik Richter
46b300f409 finish linting backend 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:42 +02:00
Dominik Richter
e5686ea4e2 lint backends 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:42 +02:00
Dominik Richter
cfbd5ccfc0 lint plugins 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:42 +02:00
Dominik Richter
6e01505414 lint 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:41 +02:00
Dominik Richter
67b5ecc06e bugfix: force PTY on SSH connection 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:41 +02:00
Christoph Hartmann
1570e8e7af Merge pull request #4 from chef/docker 
Start Docker + SSH backends
 2015-09-22 02:15:41 +02:00
Dominik Richter
1359152fc6 add ssh channels to get command stdout/stderr/status 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:41 +02:00
Dominik Richter
0a13817639 feature: add ssh backend 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:41 +02:00
Dominik Richter
e3373679ec feature: add docker container backend 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:41 +02:00
Christoph Hartmann
238f1b2016 add pip resource to verify gem packages 2015-09-22 02:15:41 +02:00
Christoph Hartmann
bdb859b730 add npm resource to verify gem packages 2015-09-22 02:15:41 +02:00
Dominik Richter
275039dead more rubocop 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:41 +02:00
Christoph Hartmann
0171b2e2f2 add gem resource to verify gem packages 2015-09-22 02:15:41 +02:00
Christoph Hartmann
9783751741 implement package resource 2015-09-22 02:15:41 +02:00
Dominik Richter
a6c47a2e39 rubocop 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:40 +02:00
Dominik Richter
dcdf8ea0e2 init linux_file owner class 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:40 +02:00
Dominik Richter
a9bd476cb5 feature: configure specinfra backend 
via target or backend config; set the backend to: specinfra+exec, specinfra+ssh, specinfra+winrm, specinfra+docker etc.

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:40 +02:00
Dominik Richter
03e6402f5c use LinuxFile to get type information in specinfra backend 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:40 +02:00
Dominik Richter
13bc7f4015 move linux file handling to separate class 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 02:15:40 +02:00
Dominik Richter
686134e06b bugfix: url handler crashing on handles? 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 01:42:26 +02:00
Dominik Richter
0125bcace8 add call tracing to mock backend 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 01:42:26 +02:00
Dominik Richter
0abef702fc initialize @stat in local backend 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 01:42:26 +02:00
Dominik Richter
ecad431bc6 move mock_command into mock, out of helper 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 01:23:08 +02:00
Dominik Richter
17386740c7 dont redefine classmethod on initialize 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 01:23:08 +02:00
Dominik Richter
f1c454aae3 typo fix on @commands 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 01:23:08 +02:00
Dominik Richter
cb5f2d4409 bugfix: inherit base methods 
Don't redefine methods that aren't there yet. yes: ruby parses top down at at that point we don't have these methods yet anyway, so don't :send them to the class

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 01:23:08 +02:00
Dominik Richter
32a6f01d1f simplify mock backend association 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 01:23:08 +02:00
Dominik Richter
ea91af6da1 lint 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 01:23:08 +02:00
Dominik Richter
93a3bc8e58 dont reference backend in local command 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 01:23:08 +02:00
Dominik Richter
1d1220983a feature: local backend 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-22 01:23:08 +02:00
Christoph Hartmann
a7efec310b implement yum resource 2015-09-22 01:10:56 +02:00
Christoph Hartmann
9358ac3035 rename env.rb to os_env.rb 2015-09-21 13:58:47 +02:00
Christoph Hartmann
f0ac64cf31 improvement: extend mock to support simulated cmds 2015-09-21 13:43:09 +02:00
Christoph Hartmann
0e8651bf26 fix rubocop issues 2015-09-05 16:07:54 +02:00
Christoph Hartmann
36c9de7529 more rubocop fixes 2015-09-04 09:59:30 +02:00
Christoph Hartmann
91ea24d538 replace :: with . syntax 2015-09-04 09:15:20 +02:00
Christoph Hartmann
bbbb8380ca replace raise with fail 2015-09-03 23:24:42 +02:00
Christoph Hartmann
556bb5a0f0 remove empty lines 2015-09-03 23:20:53 +02:00
Christoph Hartmann
1773d20178 use single quotes 2015-09-03 23:18:28 +02:00
Christoph Hartmann
5c137a7ab1 remove redundant return 2015-09-03 20:45:37 +02:00
Christoph Hartmann
349d5bf9f1 harmonize method definition style 2015-09-03 20:43:58 +02:00
Christoph Hartmann
7bdcc00e94 add utf-8 header 2015-09-03 20:36:46 +02:00
Christoph Hartmann
5612752b82 use single quotes 2015-09-03 20:35:23 +02:00
Christoph Hartmann
a895d19f03 simplify mock file loading method 2015-09-03 17:53:38 +02:00
Christoph Hartmann
a206d0ef09 (re)add debug for mock backend 2015-09-03 17:51:08 +02:00
Christoph Hartmann
7db6941219 feature: add bond resource implementation 2015-09-03 17:34:11 +02:00
Christoph Hartmann
ceb68f94cf feature: extend mock framework to support file mappings 2015-09-03 17:34:11 +02:00
Dominik Richter
c9fcb2913a complete all file tests 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-03 16:17:52 +02:00
Dominik Richter
29a143a67f remove file ctime 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-03 15:43:30 +02:00
Dominik Richter
708fa8485d bugfix: reset specinfra backends between runs manually 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-03 15:32:33 +02:00
Dominik Richter
f54fa6537a use string for backend conf 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-03 14:56:08 +02:00
Dominik Richter
f618fa391b bugfix: specinfra file type detection 
mask & tmask returns non-zero values, if some bits fit the file-type. this leads to overlapping results. make sure the mask result has the full mask present, then use it.

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-03 14:14:57 +02:00
Dominik Richter
841198993d runner conf must use string-keys 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-03 13:43:32 +02:00
Dominik Richter
18701752a7 improvement: make runner config map work with keys and string 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-03 12:56:40 +02:00
Dominik Richter
199cb84ab3 not implemented only throws on missing methods 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-02 17:30:49 +02:00
Dominik Richter
951f63c6c8 feature: configurable formatter for test exec 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-02 16:44:14 +02:00
Dominik Richter
1c2ab098f5 specify methods all backends must implement 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-02 11:53:25 +02:00
Dominik Richter
05b4167971 start backend and file tests 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-02 04:55:22 +02:00
Dominik Richter
32964c1e4e tests for backend 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-02 04:19:23 +02:00
Dominik Richter
e08787d14e move file interface + helpers to backend plugin 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-02 00:50:52 +02:00
Dominik Richter
f60b7580d5 complete specinfra file backend 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-01 11:48:50 +02:00
Dominik Richter
a64597594e minor bugfixes 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-09-01 11:11:34 +02:00
Dominik Richter
04db46f116 add aliases for target and backend 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-29 19:49:39 -07:00
Dominik Richter
601abe2579 rename backend reference @vulcano -> vulcano 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-29 19:33:15 -07:00
Dominik Richter
b2e031c056 start serverspec migration 
This project is inspired by Serverspec and all the wonderful contributions that went into it. Thank you all so much! We have used Serverspec as our audit base and have now a slightly different perspective. We hope to continue the spirit on this path. Hopefully both projects will find their way together.

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-29 17:36:05 -07:00
Dominik Richter
d292ed6ea5 migrate directory resource 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-29 17:24:34 -07:00
Dominik Richter
50a5803427 rename is_file? -> file? 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-29 17:13:53 -07:00
Dominik Richter
431c27d4ab migrate all specinfra backends 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-29 17:13:07 -07:00
Dominik Richter
40784c7c8e safeguard against empty backends 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-29 16:31:36 -07:00
Dominik Richter
de27b3d8e9 move mock backend to new plugin structure 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-29 16:14:28 -07:00
Dominik Richter
a8ed53c337 move backend to new plugin structure 
use the same structure as for resources

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-29 16:11:23 -07:00
Dominik Richter
df8a668d8c combine resoure+resources -> resource.rb 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-29 16:08:17 -07:00
Dominik Richter
84102b89de rename contents -> content 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-29 02:10:36 -07:00
Dominik Richter
554accdedc reimplement command resource 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 16:08:24 -07:00
Dominik Richter
e0459c4116 migrate all of audit 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 16:04:52 -07:00
Dominik Richter
2a8b8d3394 migrate env and apache conf 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 13:02:18 -07:00
Dominik Richter
dddc9daed0 migrated inetd config and etc group 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 12:52:59 -07:00
Dominik Richter
2103a4485b migrate limits and login defs 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 12:47:37 -07:00
Dominik Richter
8004d6f129 migrate all mysql resources 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 12:41:48 -07:00
Dominik Richter
1a45f32f0b migrated all postgres resources 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 12:37:03 -07:00
Dominik Richter
83d846ac7f migrate ntp conf and parse_config 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 12:32:17 -07:00
Dominik Richter
d9d67e943a migrate passwd and processes 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 12:27:35 -07:00
Dominik Richter
dc0f61a0ef migrate registry_key + security_policy 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 11:52:22 -07:00
Dominik Richter
d7bcf6dfea move resource plugin to vulcano/plugins 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 11:49:21 -07:00
Dominik Richter
2c2d2d8d27 rename resources -> tests in the context of runner 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 10:13:05 -07:00
Dominik Richter
3bf8037638 move to a simpler plugin structure 
This has been inspired in its calling structure by the wonderful work done in Vagrant. Kudos to all contributors!

Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-28 10:10:03 -07:00
Dominik Richter
90a2d45462 create new pluggable profile context 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-27 13:59:58 -07:00
Dominik Richter
a1af0ad24b start mock backend and change backend mechanics 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-27 13:59:15 -07:00
Dominik Richter
7e1f9b8a15 move resources lib 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-27 13:58:07 -07:00
Dominik Richter
38a99c065a 0.6.1 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-24 14:25:29 -07:00
Dominik Richter
22ce1d4b0d add docker backend support 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-24 10:35:03 -07:00
Dominik Richter
8c82bca280 bugfix: skip resources with message 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-13 23:22:56 -07:00
Dominik Richter
1890ba9226 bugfix: correctly detect code line of block 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-13 22:51:53 -07:00
Dominik Richter
75c30d9892 bugfix: remove unnecessary only_if outer definition 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-13 22:36:50 -07:00
Dominik Richter
90ed1aed99 fix missing require winrm 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 23:45:32 -07:00
Dominik Richter
6360bf825f fix wrong variable ref 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 23:39:12 -07:00
Dominik Richter
83432ccfb4 fix typo 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 23:31:47 -07:00
Dominik Richter
225b49fbd2 0.6.0 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 22:47:29 -07:00
Dominik Richter
5875864f45 move zip and tar helpers 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 22:45:42 -07:00
Dominik Richter
7a59d9ce76 feature: start github uri reader 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 22:34:37 -07:00
Christoph Hartmann
9065eaa35c add zip and tar helper 2015-08-12 21:14:48 -07:00
Dominik Richter
61794072e5 generalize folder handling 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 20:47:02 -07:00
Dominik Richter
9f0b6ebc46 add targets for chef-audit and serverspec 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 19:19:36 -07:00
Dominik Richter
6e4381f2d4 turn backend into a separate object 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 19:07:01 -07:00
Dominik Richter
9ba4fb1d00 add configurable targets and backends 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 18:48:17 -07:00
Dominik Richter
cecd86a119 improvement: unify ID generation for all tests 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 17:29:23 -07:00
Dominik Richter
7f67a088cb feature: --target option for scans 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 17:05:32 -07:00
Dominik Richter
5b0f5252c6 shorten anonymous describe IDs 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 15:17:18 -07:00
Dominik Richter
116a9b46d8 run multiple files by aggregating results 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 15:16:50 -07:00
Dominik Richter
360da9a7ba feature: configure ssh+winrm targets on CLI-runner 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 14:19:44 -07:00
Dominik Richter
33043dd6a1 feature: run tests from cli 
Signed-off-by: Dominik Richter <dominik.richter@gmail.com>
 2015-08-12 12:03:41 -07:00
Your Name
0108ab2c75 simplify ruby source block detection 
Signed-off-by: Your Name <your.name@email.com>
 2015-08-09 20:31:51 +00:00
Your Name
39343367c2 feature: include rule code in json 
Signed-off-by: Your Name <your.name@email.com>
 2015-08-09 18:29:59 +00:00
Dominik Richter
1b9997b204 bugfix: work around embedded only_if conditionals 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-21 22:52:40 +02:00
Dominik Richter
5d5b945933 feature: only_if for profiles added 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-21 18:07:35 +02:00
Dominik Richter
cceefa54cf add base resource 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-21 17:06:04 +02:00
Dominik Richter
8026915ce5 feature: support skipping rules via resources 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-21 16:32:42 +02:00
Dominik Richter
b942a1a103 bugfix: run without profile ID defined 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-21 10:28:13 +02:00
Dominik Richter
1abfdae264 bugfix: use fully qualified profile IDs 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-20 02:21:08 +02:00
Dominik Richter
ef4471d20b feature: allow to skip rules 
Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-20 00:20:44 +02:00
Dominik Richter
2e1106b933 feature: add rule hierarchy with include and require rules 
include_rules 'vulcanosec/ssh'

this will include all rules defined in vulcanosec/ssh

    require_rules 'vulcanosec/linux'

this will not include any rules yet, but you may choose what you want to pull in.

both have a block attached which will allow you to choose rules (for require_rules) and redefined/change existing rules as you like. small example:

    require_rules 'vulcanosec/linux' do
      rule fs-3 do
        impact 1.0
      end
    end

Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-20 00:00:53 +02:00
Dominik Richter
a6748e2418 load rules from a spec file into a profile context 2015-06-19 22:23:07 +02:00
Dominik Richter
7649d1459c simplify global vs embedded rule handling 
i.e. one executes directly, the other just registers. this change makes such a distinction much easier

Signed-off-by: Dominik Richter <dominik@vulcanosec.com>
 2015-06-19 21:52:57 +02:00