inspec/CHANGELOG.md
2017-10-25 14:14:42 +00:00

194 KiB

Change Log

v1.43.4 (2017-10-25)

New Resources

Changes since 1.42.3 release

Enhancements

  • Include ref when writing out inspec control objects #2259 (arlimus)

Bug Fixes

New Resources

  • cran resource: check for R module installation #2255 (mgrobelin)
  • cpan resource: check for Perl module installation #2254 (mgrobelin)
  • new resource: elasticsearch resource, test cluster/node state #2261 (adamleff)

v1.42.3 (2017-10-19)

Enhancements

  • etc_fstab resource: properly namespace the resource, add nfs_file_systems documentation #2190 (jburns12)
  • Uses netstat to detect open ports on AIX #2210 (cattywampus)
  • Add missed 'html' to 'format' option explanation and arrange formatters in alphabetical order #2244 (strangeman)
  • Add inspec habitat profile setup command #2239 (adamleff)
  • Extend Windows ACL matchers #1744 (TheLonelyGhost)
  • windows_hotfix resource: Replace WMI query with PowerShell cmdlet "get-hotfix" #2252 (mattray)

Bug Fixes

Merged Pull Requests

v1.41.0 (2017-10-09)

Enhancements

  • Add bsd platform family to etc_hosts resource #2192 (ctbarrett)
  • http resource: properly execute tests on remote target #2209 (adamleff)
  • Add output for port/protocol for host resource. #2202 (jquick)
  • Update shell resource help to return what is defined #2219 (jquick)
  • processes resource: support busybox ps #2222 (adamleff)
  • Enhance cmp matcher to work with symbols, fix file documentation #2224 (adamleff)

Bug Fixes

  • Add nil check for sshd config file #2217 (jquick)
  • Support symbol keys in ObjectTraverser #2221 (adamleff)
  • Fix loading profile files when executing multiple profiles #2223 (adamleff)
  • ssl resource: properly raise error when unable to determine if port is enabled #2205 (jquick)

v1.40.0 (2017-09-28)

New Resources

  • firewalld resource: inspect the status and configuration of firewalld #2074 (dromazmj)

v1.39.0 (2017-09-25)

New Resources

  • windows_hotfix resource: test whether a Windows HotFix is installed #2178 (mattray)
  • etc_hosts_allow and etc_hosts_deny resources: test the content of the tcpwrappers configuration files #2073 (dromazmj)

Merged Pull Requests

  • Bump train to 0.28 to allow for more net-ssh versions #2185 (adamleff)

v1.38.8 (2017-09-23)

New Resources

  • auditd resource: test active auditd configuration against the audit daemon #2133 (jburns12)

Enhancements

Bug Fixes

Merged Pull Requests

v1.37.6 (2017-09-14)

New Resources

  • etc_fstab resource: test contents of the /etc/fstab file #2064 (dromazmj)
  • nginx resource: audit the nginx binary and how it was compiled #1958 (rx294)

Enhancements

  • Support profile versions for automate profiles storage #2128 (alexpop)
  • Show versions for inspec compliance profiles #2143 (alexpop)

Bug Fixes

  • Ignore linked container names when parsing docker containers #2134 (adamleff)
  • package resource: assume a default Homebrew path #2140 (adamleff)

Merged Pull Requests

v1.36.1 (2017-09-07)

Enhancements

  • File Resource: add be_setgid, be_setuid, be_sticky matchers #2104 (clintoncwolfe)
  • add nginx_conf accessors for http, servers, and locations #2119 (arlimus)

Bug Fixes

v1.35.1 (2017-08-31)

New Resources

Enhancements

  • pip resource: support non-default pip locations, such as virtualenvs #2097 (tonybaloney)
  • port resource: support ss instead of netstat #2110 (adamleff)

Bug Fixes

  • auditd_rules resource: fix get_keys error on lines that have no keys #2103 (jburns12)
  • http resource: prevent repeat calls during a control with multiple tests #2108 (mivok)
  • Support mixed-case group entries #2101 (adamleff)

Merged Pull Requests

  • Add sensitive flag to resources to restrict logging output #2017 (arothian)

v1.34.1 (2017-08-24)

Enhancements

  • Refine the profile/test summary output of the CLI formatter #2094 (adamleff)

v1.33.12 (2017-08-18)

Bug Fixes

Merged Pull Requests

v1.33.1 (2017-08-10)

Features & Enhancements

  • New 'be_in' matcher for matching against values in a list #2022 (rx294)

Merged Pull Requests

  • Fix docker_container.tag to use last element of image #2052 (mattlqx)
  • Bump project minor version, bump train dependency version #2058 (adamleff)

v1.32.1 (2017-08-03)

Merged Pull Requests

  • bug fix: properly support profile files that are more than one directory deep
  • bug fix: fix mysql_session resource to not use socket for host target #2020 (n-rodriguez)
  • host resource now properly handles localhost lookup
  • bugfix: empty file strings from archive readers #2027 (arlimus)
  • Fix issue when xinetd.conf does not end in newline #2040 (kareiva)
  • catch newline issues in xinet.d #2043 (arlimus)
  • Prep for 1.32.0 release #2046 (adamleff)

v1.31.1 (2017-07-06)

Full Changelog

Fixed bugs:

v1.31.0 (2017-07-06)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Fix formatter when two profiles have the same name #1991 (adamleff)
  • Fix host resolution on Darwin, use dig wherever possible #1986 (adamleff)
  • updated postgres_session resource properly escape queries #1939 (aaronlippold)

v1.30.0 (2017-06-29)

Full Changelog

Implemented enhancements:

Fixed bugs:

v1.29.0 (2017-06-22)

Full Changelog

Fixed bugs:

  • Don't send HTTP headers that have nil values #1948 (adamleff)
  • small typo in the postgres resource with exist? function and assignment of data_dir_loc. #1937 (aaronlippold)
  • reject nil as a command input #1863 (arlimus)

v1.28.1 (2017-06-16)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Update zlib to 1.2.11 to address known CVEs #1934

v1.28.0 (2017-06-15)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Error when listing compliance profiles against Automate pre 0.8 #1921
  • Unexpected nil authentication with inspec exec -t and WinRM #1901
  • inspec exec with --json-config option having multiple node information #1897
  • describe package failing in newer version #1797
  • Fix detection of Automate pre-0.8.x in Compliance::API #1922 (adamleff)
  • bugfix: reading tgz files with binread #1920 (arlimus)
  • fix intermitten functional vendor test failures #1919 (arlimus)
  • enforce option values where needed #1918 (arlimus)
  • inspec archive for tgz files on windows #1907 (arlimus)
  • reading binary profile data on windows #1906 (arlimus)
  • remove duplicate message in describe.one blocks #1896 (arlimus)

v1.27.0 (2017-06-06)

Full Changelog

Implemented enhancements:

Fixed bugs:

v1.26.0 (2017-05-31)

Full Changelog

Implemented enhancements:

Fixed bugs:

v1.25.1 (2017-05-20)

Full Changelog

Implemented enhancements:

  • throw an error during inspec check if the version is not correct #1832 (chris-rock)

Fixed bugs:

v1.25.0 (2017-05-17)

Full Changelog

Implemented enhancements:

Fixed bugs:

v1.24.0 (2017-05-11)

Full Changelog

Implemented enhancements:

v1.23.0 (2017-05-04)

Full Changelog

Implemented enhancements:

  • Add command-line completions for fish shell #1760 (smith)

Merged pull requests:

v1.22.0 (2017-04-27)

Full Changelog

v1.21.0 (2017-04-24)

Full Changelog

v1.20.0 (2017-04-13)

Full Changelog

Fixed bugs:

  • gem resource :chef symbol isn't valid on Windows #1645

Closed issues:

  • List on-tap hard to use #1644
  • inspec vendor meta profiles fails when dependency profile is in Automate asset store #1632
  • cannot upload meta profile to Automate #1631

Merged pull requests:

v1.19.2 (2017-04-07)

Full Changelog

Fixed bugs:

  • Bug or doc problem with registry\_key #1268

Closed issues:

  • Strange registry\_key behavior Unable to get .NET Version #1131

Merged pull requests:

v1.19.1 (2017-04-04)

Full Changelog

Merged pull requests:

v1.19.0 (2017-04-04)

Full Changelog

Implemented enhancements:

Closed issues:

  • SSL Resource - Protocols Filter has wrong description #1620
  • Inspec multi-server queries #1616

Merged pull requests:

v1.18.0 (2017-03-30)

Full Changelog

Implemented enhancements:

  • Requesting x509_certificate and x509_private_key #1459
  • generate profile CLI command #410

Fixed bugs:

  • YAML file extensions support only .yml #1569
  • yum.repo with should_not exist fails with NoMethodError: undefined method `[]' for nil:NilClass #1553

Closed issues:

  • Cannot install on CentOS 7 #1609
  • port should be_listening busted in 1.17.0? #1602
  • inspec fails to install on centos 7 #1597
  • Invalid name argument error after upgrading Inspec #1588
  • Fix-up www build processes due to Gemfile change #1586
  • inspec outputs full hash when testing ini style file option with [header] #1541
  • inspec compliance upload fails on automate server #1360
  • Add JSON Schema validation #884

Merged pull requests:

v1.17.0 (2017-03-21)

Full Changelog

Implemented enhancements:

  • Calendar for Line Chart #1558
  • Need better error message for improper inspec.yml formatting #1549

Fixed bugs:

  • cannot load such file -- nokogiri #1562
  • Failure to parse tcp6 URI #1521

Closed issues:

  • json resource array index access not working #1560
  • Crontab regex matching #1526

Merged pull requests:

v1.16.1 (2017-03-06)

Full Changelog

Fixed bugs:

  • "inspec version" waits for connection timeout inside firewall #1537

Merged pull requests:

  • releasing 1.16.1 with a bug fix and omnibus fix #1540 (adamleff)
  • Fix omnibus build after new JUnit formatter #1539 (adamleff)
  • Avoid connection timeout of "inspec version" #1538 (makotots)
  • Write Habitat-driven InSpec output to svc_var directory #1533 (adamleff)
  • Updating .gitignore for Habitat and direnv #1531 (adamleff)
  • Ready for review - inspec.io bug fixes, #1440, #1420, #1465, #1421, #1437,#1226, #1494, #1495 #1512 (hannah-radish)

v1.16.0 (2017-03-02)

Full Changelog

Implemented enhancements:

Closed issues:

  • Small bug on the registry_key docs page #1523

Merged pull requests:

v1.15.0 (2017-02-27)

Full Changelog

Implemented enhancements:

  • Wrong rendering of InSpec.io header #1421

Fixed bugs:

  • New Inspec.io is crashing on Edge if window is resized to a smaller window #1420

Closed issues:

  • Colours and symbols broken on Windows #1508
  • be_reacheable matcher for host resource should not always use ping on linux #1504
  • Inspec login fails #1503
  • Develop an inspec test for selinux #1496
  • Inspec.io: Add webinar/notifications bar in index.html #1495
  • Inspec.io: Try Demo Button Bug #1494
  • chef-compliance
  • Create url for demo that can be pointed to from outbound campaigns #1485
  • After inspec update from 1.5 to 1.10 it breaks with [undefined method `[]=' for nil:NilClass] #1456
  • Inspec.io and IE11 #1437
  • Link to robert_config.rb is broken on inspec.io #1226

Merged pull requests:

v1.14.1 (2017-02-10)

Full Changelog

Closed issues:

  • go /profiles service modifications #1483
  • inspec compliance login* should support a hostname for the SERVER argument #1473

Merged pull requests:

v1.14.0 (2017-02-08)

Full Changelog

Fixed bugs:

Closed issues:

  • Display meaningful error message when uploading profiles to a server with self-signed certs #1469

Merged pull requests:

  • Use RuboCop 0.39.0 same as chefstyle #1478 (tduffield)
  • bugfix: warn users about insecure login requirements #1472 (arlimus)
  • Add support for "inspec -v" showing the version #1470 (adamleff)
  • Replace slack invite form on Community, fix surprise code example #1468 (adamleff)

v1.13.0 (2017-02-07)

Full Changelog

Implemented enhancements:

Closed issues:

v1.12.0 (2017-02-03)

Full Changelog

Implemented enhancements:

Closed issues:

  • skip parameter ignored inside describe block #1450

v1.11.0 (2017-02-01)

Full Changelog

Implemented enhancements:

  • HTTP request resource #336
  • derive xinetd protocol from socket_type when not defined in the config file #1448 (alexpop)
  • Add negate! support for describe.one object #1442 (alexpop)
  • Version method for kernel_module #1435 (postgred)

Fixed bugs:

  • Fix xinetd parsing of services from the same file. Expose resource.protocols #1444 (alexpop)

Merged pull requests:

v1.10.0 (2017-01-26)

Full Changelog

Closed issues:

  • fix functional tests #1429

Merged pull requests:

v1.9.0 (2017-01-06)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • profile upload fails to compliance server #1298
  • undefined method `max_connections' for PostgreSQL #825
  • bugfix: expose postgres_conf parameters via its #826 (arlimus)

Closed issues:

  • Yum.repo should show correct name #1390
  • The 'package' resource is broken in OSX with brew as package manager #1386
  • JUnit XML dumping fails #1383
  • json.rb produces stacktrace when a target file is unreadable #1382
  • Document Serverspec Migration #804

Merged pull requests:

v1.8.0 (2016-12-16)

Full Changelog

Fixed bugs:

  • JSON resource's error message is missing filename when file is not found #1358

Closed issues:

  • inspec exec doesn't work for SSH #1361
  • inspec-archive should create a zip with version string #1350
  • https and security conserns on inspec.io #1217
  • Resource for windows scheduled task #1214
  • Last steps for inspec.io launch #1114

Merged pull requests:

v1.7.2 (2016-12-08)

Full Changelog

Fixed bugs:

  • use cached profile for compliance dependencies if vendored #1348 (chris-rock)

v1.7.1 (2016-12-03)

Full Changelog

Implemented enhancements:

Fixed bugs:

Merged pull requests:

v1.7.0 (2016-12-02)

Full Changelog

Implemented enhancements:

  • inspec compliance profiles should support automate as a backend #1295
  • this is killing my eyes!!!!!!!!! #951
  • Show process name during inspec output #1329 (jcastillocano)

Fixed bugs:

  • inspec.lock not loaded from tarball profiles #1322
  • InSpec tries to re-fetch profiles even if lockfile exists #1316
  • fix docker release script #1328 (chris-rock)
  • Provide inspec.lock for archives as well #1323 (alexpop)
  • inspec check and json to use vendored dependencies #1321 (alexpop)

Closed issues:

  • RegExp in processes resource can't match long-run process #1332
  • inspec archive vendoring #1325
  • inspec compliance upload of a meta-profile #1294

Merged pull requests:

v1.6.0 (2016-11-28)

Full Changelog

Fixed bugs:

  • InSpec loads whichever *.rb file it finds along the way causing itself to fail #1326

Closed issues:

  • command resource check doesn't fail when it should #1318
  • is this a typo.... inpsec? #1309
  • support JUnit format #1301
  • apt resource fails corner cases with optional second column #1261

Merged pull requests:

v1.5.0 (2016-11-21)

Full Changelog

Implemented enhancements:

  • inspec supermarket profiles - update for new supermarket api #1255

Fixed bugs:

  • File resource permissions for windows #783
  • docs: quoted version for package resource example #1296 (alexpop)

Merged pull requests:

v1.4.1 (2016-11-04)

Full Changelog

Fixed bugs:

  • Passing attributes to inherited profiles #1250

Closed issues:

  • RFC: Harmonize profile location targets in inspec.yml/kitchen.yml/audit cookbook #1227

Merged pull requests:

v1.4.0 (2016-11-04)

Full Changelog

Fixed bugs:

  • Windows Service State incorrectly interpretted for use in describe service. #1269
  • /etc/passwd and /etc/shadow checks fail on CentOS #1264
  • Listing profiles on the Supermarket should return all profiles #1219

Closed issues:

  • Add file integration tests for docker #1277
  • Solaris Sudo Not Always In /usr/bin/sudo #1265

Merged pull requests:

v1.3.0 (2016-10-28)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • inetd_conf resource error #1253
  • Process user should eq ["longusername"]: usernames get truncated with a '+' at the end #995
  • Remove wildcard from windows package detection #1259 (chris-rock)
  • Fix nil timeout and retries #1256 (alexpop)
  • Supermarket tools get and filter by tool_type #1254 (alexpop)
  • Fix processes resource user and command truncation #1225 (alexpop)

Closed issues:

  • inetd and xinetd resources inconsistencies #1252
  • TestKitchen - Duplicate testing when verifier specified in suite definition #1240
  • Document new DCO process in contributing.md #1223
  • Move InSpec Community to https://community-slack.chef.io/ #1222
  • Export Docker package for InSpec from Habitat #1212
  • Test verify action on Windows 2012 fails - [no implicit conversion of nil into Array] on default-windows-2012r2 #1193
  • Add InSpec habitat plan #843

Merged pull requests:

v1.2.1 (2016-10-15)

Full Changelog

Implemented enhancements:

  • Show actual value for cmp octal comparisons in string to match expected #1211 (alexpop)

Fixed bugs:

  • Using "cmp" Against File Mode Fails #1188
  • Unexpected failures with kitchen-inspec and inspec 1.0.0 #1187
  • update train to fix empty target URIs #1221 (arlimus)

Closed issues:

  • www: typo on inspec.io #1197

Merged pull requests:

v1.2.0 (2016-10-10)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Online tutorial: weird behavior with backspace, invalid commands #1184
  • parse_config and parse_config_file does not show fully info when test fails or even if it succedes #1147
  • www: Online tutorial: safari inspec online demo bug! #1086
  • cmp code_desc missing operation and expected valid #1204 (alexpop)

Closed issues:

  • Resources on http://inspec.io/docs/reference/resources/ are not in alphabetical order #1195
  • www: Online tutorial: update inspec tutorial to 1.0.0 version #1169

Merged pull requests:

v1.1.0 (2016-10-05)

Full Changelog

Fixed bugs:

  • InSpec in Visibility #1117
  • inspec exec on tar.gz with local library requirements doesn't work #779
  • parse_config_file fails when it encounters a '[' #687
  • use mock backend for inspec vendor/check/json #1202 (arlimus)
  • bugfix: support nil entries in filter table #1201 (arlimus)
  • bugfix: always use the mock backend for inspec archive #1200 (arlimus)
  • Missing registry keys should not exist #1199 (alexpop)
  • bugfix: use correct logger in cli #1198 (arlimus)

Closed issues:

  • registry_key ignores failed Get-Item, always "exists" #1196
  • www: Online tutorial doesn't load not building #1182
  • Issue locally running an inspec check on a service resource #1176
  • Demo at http://inspec.io/ stuck on Loading #1165
  • Confusing reporter output with inherited profiles #1071
  • Provide clear error message if dependency is not available #1069
  • Dependencies: Design UX for scoping of attributes and resources #1057
  • RFC Dependencies #888

Merged pull requests:

v1.0.0 (2016-09-26)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • README.md has broken link to non-existent file #1136

Merged pull requests:

v1.0.0.beta3 (2016-09-25)

Full Changelog

Implemented enhancements:

  • Improve lockfile handling #1070
  • Show skip_message and correct title #1109 (alexpop)

Fixed bugs:

  • InSpec CLI output not showing skip message when control title is defined #1097
  • bugfix: there is one more button to start the online demo #1140 (arlimus)

Closed issues:

  • add docs to inspec.io #1119
  • Cache key for dependencies needs to be based on content hash for urls #1066

Merged pull requests:

v1.0.0.beta2 (2016-09-22)

Full Changelog

Implemented enhancements:

  • kernel_parameter does not show fully info when test fails #1093
  • InSpec html demo #851
  • Counting and status of controls without tests #849
  • supports does not mark resources as skipped #354
  • include Inspec::DSL anywhere #271
  • Suse Support #113
  • Update the username and password login method #1095 (alexpop)

Fixed bugs:

  • InSpec in Workflow #1115
  • uninstalled package shows as installed #1092
  • undefined method `send_request' for Compliance::API:Class #1088
  • package
  • script
  • Use parenthesis when passing regular expressions #1106 (alexpop)
  • Include code description in the output of failed controls #1096 (alexpop)
  • Update the username and password login method #1095 (alexpop)

Closed issues:

  • Package Resource isn't searching 64-bit Registry Hives #1100
  • demo improvements #1089
  • Dependencies: All resources are scoped #1058
  • Improve InSpec tutorial #1045
  • 1.10.2 has an extra space in pip package output #1043
  • Follow up to 1013: find_files() errors still occurring for apache_conf resource after 0.33.0 upgrade #1030
  • MVP in-browser inspec demo #957
  • Failing tests in inherited tests are not displayed #899

Merged pull requests:

v1.0.0.pre.beta1 (2016-09-19)

Full Changelog

Implemented enhancements:

  • InSpec output for summary needs to count controls #852
  • ssl resource to use inspec.backend.hostname and require train 0.19.1 #1084 (alexpop)
  • optimize command simulator auto-generation #1078 (chris-rock)

Closed issues:

  • proper scrolling of terminal #1053

Merged pull requests:

v0.35.0 (2016-09-16)

Full Changelog

Fixed bugs:

  • resource dsl not loded properly inside describe blocks #1074

Closed issues:

  • online demo: check style of tutorial text #1054
  • online demo: clear linux and cls windows command to clear the terminal #1052
  • respect inspec.yml supports with include_controls #1049
  • Simplify dependency in inspec.yml #1048

Merged pull requests:

v0.34.1 (2016-09-13)

Full Changelog

Fixed bugs:

Merged pull requests:

v0.34.0 (2016-09-12)

Full Changelog

Implemented enhancements:

  • Vendor Github and Supermarket dependencies #959
  • use simple config for security policy resource #1044 (chris-rock)
  • identify enabled/disabled accounts for windows #1039 (chris-rock)

Closed issues:

  • Compliance should allow the ability to upload the unconverted SCAP profiles from the agencies. #1055
  • Multiple matchers in a describe block display only a single line #1025
  • Create all content for inspec homepage demo #1021
  • User resource should use Filtertable #948

Merged pull requests:

v0.33.2 (2016-09-07)

Full Changelog

Implemented enhancements:

Fixed bugs:

v0.33.1 (2016-09-07)

Full Changelog

Closed issues:

  • Research: determine mechanism for recording + playing back inspec #955
  • Create content for interactive inspec online demo #954

Merged pull requests:

v0.33.0 (2016-09-05)

Full Changelog

Implemented enhancements:

  • Introduce scoping to the ProfileContext which has a view of all of its dependencies #958
  • Create Help for Subcommands #305
  • Allow service resource to accept Windows service name with spaces #1003 (martinheg)

Fixed bugs:

  • Error output not informative #1016
  • Suse Linux Enterprise Server 11 SPX is failing for describe service resource. #997
  • Inspec Docker directory test fails #996
  • package() 'version' {should match(pattern)} does not return failed control, but shows as failed test #898
  • Raise error when an invalid URI is received #1019 (alexpop)
  • Fix os exception in mysql resource #1012 (alexpop)
  • cmp not treating 0 as integer only as string #991 (jeremymv2)

Closed issues:

  • apache_conf resource seems to be using incorrect paths to amalgamate apache config only Centos/RHEL? #1013
  • More options link in Readme.md doesn't work 404 - need updating? #1001
  • Chef compliance breaks after updating inspec gem 0.32 #992
  • Improve CLI report #984
  • record inspec + in-browser playback for online demo #956
  • UX & UI design for the interactive HTML demo #953

Merged pull requests:

v0.32.0 (2016-08-26)

Full Changelog

Implemented enhancements:

  • Provide SSL InSpec with full demo #903
  • improve package resource on windows #86
  • can check windows service startup mode now #968 (Anirudh-Gupta)
  • Resolved an issue checking ports on windows #962 (chris-rock)

Fixed bugs:

  • Grouping multiple it blocks in one describe blocks ruins console output during test runs #918
  • Windows default path format causes errors with inspec check #672
  • bugfix windows forward slashes handling #963 (chris-rock)
  • Fix command evaluation for inspec shell -c #943 (ksubrama)

Closed issues:

  • Support sid for user resource #960
  • Create and load Lockfiles for dependencies #950
  • Implement test cases for inspec shell #942
  • Transitive dependency loading #915
  • Document InSpec OR features #853
  • Document ini resource #848
  • Document special service resources #495

Merged pull requests:

v0.31.0 (2016-08-19)

Full Changelog

Implemented enhancements:

  • Support writing full tests in inspec shell #240
  • inspec shell documentation - Fix #805 #925 (ksubrama)
  • Windows ports with pid and process name #912 (alexpop)
  • Improve inspec shell by having it evaluate describe/control blocks. #909 (ksubrama)

Fixed bugs:

  • inspec login help help text inconsistent with inspec CLI usage #905
  • Subcommand help outputs incorrect usage line #895
  • inspec compliance version fails with stacktrace if no compliance URL is configured #894
  • inspec binary occasionally exits zero on SSH failures #840
  • inspec login fails #793
  • ssh_config and sshd_config matchers should be case-insensitive #759
  • Login succeeds but later commands fail #731
  • passwd resource does not ignore comments #725
  • remove tests and dev dependencies from released gem #924 (arlimus)
  • update dependencies and loosen molinillo #917 (arlimus)
  • Handle xinetd config with only one entry #846 (chris-rock)

Closed issues:

  • Document InSpec Shell #805

Merged pull requests:

v0.30.0 (2016-08-12)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • RHEL postgres data dir is not /var/lib/postgres as coded #494
  • Add readline ignore markers to color escape codes in the shell #900 (stevendanna)

Closed issues:

  • inspec exec help option does not provide any context sensitive help #906
  • Add windows MSI packaging support to omnibus #889
  • tab-completion support in the inspec command line and in the inspec shell :) #607

Merged pull requests:

v0.29.0 (2016-08-08)

Full Changelog

Implemented enhancements:

  • port() could convert string parameter to integer #867
  • add params and content method to parse_config #876 (chris-rock)
  • Activate centos, debian and oracle linux in our travis tests #869 (chris-rock)

Fixed bugs:

  • 1.10.2 missing a space in failed test output #872
  • inspec fails to determine file_version for a file on a windows 2012R2 #858
  • os[:family] returns "centos" rather than "redhat" on my Centos 7.2 box #847
  • Inspec exec output when multiple matchers are used #812
  • Inspec Detect Issues #772
  • systemd is-enabled check does not handle backcompat with sysv-init scripts e.g. ntp on Ubuntu 16.04 #749
  • Update inspec for os[:family] change in Train #865 (stevendanna)
  • Use systemctl's helper command to determine enabled & active status #863 (stevendanna)

Closed issues:

  • bump train dependency #870
  • parse_config error when searching for fs.suid_dumpable #866
  • Improve integration tests #861
  • Adapt InSpec to work with latest train OS updates #855

Merged pull requests:

v0.28.1 (2016-08-03)

Full Changelog

Fixed bugs:

  • Read Chef attributes within the tests ? #813
  • Docs for command use eq instead of match #502
  • fix color code barriers #838 (arlimus)

Closed issues:

  • Document all supported Operating Systems #842

Merged pull requests:

v0.28.0 (2016-07-21)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • prevent circular loading of resource library #831 (arlimus)

Merged pull requests:

v0.27.1 (2016-07-15)

Full Changelog

Fixed bugs:

  • Inconsistent json format caused by inconsistent hash keys #827

Closed issues:

  • wrong path detection for postgres conf_dir and conf_path #823

Merged pull requests:

  • FIX: file(hba_config_file) test in documentation #830 (atomic111)
  • Fix runner.rb key inconsistency #828 (alexpop)
  • FIX #823 wrong postgres path detection for conf_dir and conf_path #824 (atomic111)

v0.27.0 (2016-07-11)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • os resource not accessible within a describe #451
  • add suid sgid and sticky support for file resource #819 (arlimus)
  • pin gem version for ffi due to appveyor failures #816 (arlimus)
  • check service running by ActiveState #814 (arlimus)

Merged pull requests:

  • small fix for postgres_session documentation Test for risky database entries example #815 (atomic111)
  • Add array documentation to yaml / json resource #803 (brentm5)
  • Updating ctl docs to include the init command #802 (ChefRycar)
  • add documentation for bash resource #799 (chris-rock)
  • align inspec's check, detect, and exec cli formatters #797 (arlimus)

v0.26.0 (2016-06-16)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Transport error while trying to ssh to mac osx #788

Closed issues:

  • Can't upload inherited profile #789

Merged pull requests:

v0.25.0 (2016-06-14)

Full Changelog

Closed issues:

  • Why mode matcher doesn't work on a file resource #781

Merged pull requests:

v0.24.0 (2016-06-03)

Full Changelog

Implemented enhancements:

  • support intra-libraries file referencing + loading #780 (arlimus)

Merged pull requests:

  • Update documentation for matching output of commands #777 (tas50)

v0.23 (2016-05-31)

Full Changelog

Implemented enhancements:

Closed issues:

  • inspec hangs on command('ausearch -k docker').stdout #768
  • registry_key test failing on Windows 2008 R2 #767
  • InSpec login successful with wrong username #766

Merged pull requests:

v0.22.1 (2016-05-18)

Full Changelog

Fixed bugs:

Closed issues:

  • port resource fails in docker containers because netstat is missing, but gives poor error output as to why. #762
  • Add support for alternate sudo command #755
  • Chef Compliance Server UI - Need capability to remove an uploaded profile #712

v0.22.0 (2016-05-16)

Full Changelog

Implemented enhancements:

Merged pull requests:

v0.21.6 (2016-05-13)

Full Changelog

Fixed bugs:

v0.21.5 (2016-05-13)

Full Changelog

Fixed bugs:

  • fix construction of ruby objects on string and array handlers #746 (arlimus)

v0.21.4 (2016-05-13)

Full Changelog

Implemented enhancements:

v0.21.3 (2016-05-11)

Full Changelog

Fixed bugs:

  • Return empty array instead of nil for port methods #739 (alexpop)

Merged pull requests:

  • deprecate array matcher #737 (chris-rock)
  • Escape os_env command on Windows to handle env variables containing parentheses. #735 (tpcwang)

v0.21.2 (2016-05-11)

Full Changelog

Implemented enhancements:

  • Read SELinux labels for processes #726
  • Fix contain_match, add none_match #736 (alexpop)

Fixed bugs:

v0.21.1 (2016-05-10)

Full Changelog

Fixed bugs:

Merged pull requests:

v0.21.0 (2016-05-10)

Full Changelog

Implemented enhancements:

  • Support nested describe.one blocks #711
  • inspec exec format json backtrace #614
  • Improve error output for compliance plugin #544
  • Cryptic error output if authentication with Chef Compliance fails #489
  • How to access the impact of a test failure? #377
  • Optimize InSpec detect #300
  • document output and/or expected results #210
  • Remove redundant space when missing expectation #724 (alexpop)
  • Provide service params #721 (alexpop)
  • api: make processes return integers for pid/vsz/rss #717 (arlimus)
  • Expose systemd service properties via .info #715 (alexpop)
  • Use only strings in resource examples, docs and tests #708 (alexpop)
  • use filtertable with passwd resource #699 (arlimus)
  • show error if user is not logged in to compliance server #696 (chris-rock)
  • JSON formatter redesign #671 (arlimus)

Fixed bugs:

  • bugfix: handle train errors in inspec execution #705 (arlimus)

Closed issues:

  • How do I inherit a profile from another profile? #691
  • How do I download a profile from a compliance server? #690
  • inspec compliance login fails #689

Merged pull requests:

v0.20.1 (2016-04-30)

Full Changelog

Implemented enhancements:

Fixed bugs:

Merged pull requests:

v0.20.0 (2016-04-29)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Specifying an invalid target protocol should give a failure message #686
  • update compliance plugin #695 (chris-rock)
  • bugfix: restore pax_global_header fetcher filter #669 (arlimus)

Closed issues:

  • How do I run an inspec profile in chef audit mode? #692

Merged pull requests:

v0.19.3 (2016-04-22)

Full Changelog

Fixed bugs:

Merged pull requests:

v0.19.2 (2016-04-21)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • bugfix: fix formatting of cmp expectations #668 (arlimus)

Closed issues:

  • Octal Permissions Match #666
  • file permissions for symlinked files are not checked correctly #665

Merged pull requests:

  • release via travis + test via rubygems #663 (arlimus)

v0.19.1 (2016-04-18)

Full Changelog

Implemented enhancements:

  • configure command execution shells to sh/bash/zsh #659 (arlimus)
  • be descriptive on shadow.entries #657 (arlimus)

Fixed bugs:

Closed issues:

  • gem install failure on RHEL 7.2 Ruby 2.0 #653

Merged pull requests:

v0.19.0 (2016-04-17)

Full Changelog

Implemented enhancements:

  • Add required inspec version to inspec.yml #644
  • Resource grub conf #652 (arlimus)
  • fail on unsupported os/platform #651 (arlimus)
  • specify required inspec version in inspec.yml #648 (arlimus)
  • feature: cmp \< / \> / \<= / \>= / == / != sth matcher #643 (arlimus)
  • Add 'static' value as enabled to systemd service enabled check #637 (jmccann)
  • add dockerized inspec #635 (arlimus)
  • inspec-compliance + Compliance 1.0 #576 (srenatus)

Fixed bugs:

  • `add_test': undefined method error on Ubuntu 15.10 with Ruby 2.1 #642
  • Install failed on Ubuntu with Ruby 2.1 #641
  • Inspec json resource . example not working #631
  • Checking on services on SLES 11 fails #627
  • Inspec check fails on examples/profile #485
  • bugfix: rspec world handling on rspec 3.5 #650 (arlimus)
  • Prevent its(:to_i) from generated tests #639 (alexpop)
  • bugfix: non-profile execution with json formatter #632 (arlimus)

Merged pull requests:

v0.18.0 (2016-04-09)

Full Changelog

Implemented enhancements:

  • supports keyword marks tests as skipped instead of removing them #620 (arlimus)
  • Support only_if in controls #619 (arlimus)
  • don't remove controls with only_if #618 (arlimus)

Merged pull requests:

v0.17.1 (2016-03-31)

Full Changelog

Merged pull requests:

  • add inspec objects not exposed by default #608 (arlimus)

v0.17.0 (2016-03-31)

Full Changelog

Implemented enhancements:

  • add advanced passwd filters experimental #602 (arlimus)

Closed issues:

  • readable.by not working on RHEL7 #597
  • sshd_config resource no method error #595
  • Update the readme.md file to include new cli output #590

Merged pull requests:

v0.16.4 (2016-03-25)

Full Changelog

Implemented enhancements:

  • support --controls for inspec json #589 (arlimus)
  • dont fail with stacktrace on connection errors #588 (arlimus)

Fixed bugs:

  • Escape whitespace for compliance upload #486
  • inspec-compliance: url_encode profile names #574 (srenatus)

Closed issues:

  • --controls flag should be supported in all inspec commands #568

Merged pull requests:

v0.16.3 (2016-03-23)

Full Changelog

Fixed bugs:

Closed issues:

  • Issues with 'inspec compliance upload' #572

v0.16.2 (2016-03-22)

Full Changelog

Fixed bugs:

  • bugfix: dont crash on read_file contents in parse_config #570 (arlimus)

Closed issues:

  • inspec exec error on new install #569

Merged pull requests:

v0.16.1 (2016-03-22)

Full Changelog

Implemented enhancements:

Merged pull requests:

v0.16.0 (2016-03-19)

Full Changelog

Implemented enhancements:

  • Read Chef attributes within the tests ? #541
  • A resource to test http GET calls #538
  • rename script resource to powershell resource #553 (chris-rock)
  • add fulljson formatter #552 (arlimus)
  • feature: add tags and refs #551 (arlimus)
  • fix detect + add output option to archive command #546 (arlimus)
  • adding named resource registry classes #540 (adamleff)
  • add output stream to rspec configuration #529 (vjeffrey)
  • Move integration tests to test/integration #468 (chris-rock)

Fixed bugs:

  • Unable to Handle Spaced Windows File Paths #469
  • fix inspec shell and continuously test it #556 (arlimus)
  • bugfix: prevent duplicate loading of library files #547 (arlimus)
  • fix detect + add output option to archive command #546 (arlimus)
  • bugfix: archive command with inheritance-based profiles #545 (arlimus)

Closed issues:

  • Add additional metadata to the control definition to allow for more complete mapping to security guidance documents #536
  • CLI: Specifying --profiles-path on check succeeds but displays usage error on archive #535
  • inspec failing to connect to Compliance SSL certificate error #531

Merged pull requests:

v0.15.0 (2016-03-09)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Rename internal File and OS resource classes #527 (arlimus)
  • Placing all resources in the Inspec::Resources namespace #526 (adamleff)
  • bugfix: inheritance of local profiles #524 (arlimus)

Closed issues:

  • Colo[u]r those dots and Fs! #518

Merged pull requests:

v0.14.8 (2016-03-04)

Full Changelog

Closed issues:

  • Question: Cron? #490

Merged pull requests:

v0.14.7 (2016-03-01)

Full Changelog

Fixed bugs:

  • compliance command does not work with self-signed https #511
  • check error - digest: no implicit conversion of nil into String TypeError #509

Merged pull requests:

v0.14.6 (2016-03-01)

Full Changelog

Implemented enhancements:

Fixed bugs:

Merged pull requests:

v0.14.5 (2016-02-29)

Full Changelog

Merged pull requests:

v0.14.4 (2016-02-26)

Full Changelog

Implemented enhancements:

  • add xinetd_conf resource #499 (arlimus)
  • add describe.one: collection of tests with at least one passing #497 (arlimus)

Fixed bugs:

  • don't crash on empty metadata during finalize #500 (arlimus)

Merged pull requests:

v0.14.3 (2016-02-24)

Full Changelog

Implemented enhancements:

  • cmp matcher should compare expected string == number #487 (chris-rock)

Fixed bugs:

  • expose inspec errors during profile read #492 (arlimus)

Merged pull requests:

v0.14.2 (2016-02-22)

Full Changelog

Implemented enhancements:

  • load plugins in the same gem installation #482 (arlimus)

Fixed bugs:

Merged pull requests:

v0.14.1 (2016-02-22)

Full Changelog

Implemented enhancements:

Fixed bugs:

Merged pull requests:

v0.14.0 (2016-02-22)

Full Changelog

Fixed bugs:

Merged pull requests:

v0.13.0 (2016-02-19)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Windows 2008 Still not detected correctly #453
  • Service-related docs, bugs, integration tests #463 (srenatus)
  • fix url target resolution with zip and tar #462 (arlimus)
  • ensure permissions of inspec-compliance config.json on store #461 (srenatus)

Closed issues:

  • No way to reload the add resources from test code #459
  • add documentation for new server runlevel support #456

Merged pull requests:

v0.12.0 (2016-02-15)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Windows 2008 isn't being detected. #346
  • Fix two minor logging and config bugs in CLI #452 (srenatus)
  • bugfix: verify the target resolver before using it #449 (arlimus)
  • Fix iptables on CentOS6 + more tests for iptables plus small code improvements #442 (srenatus)

Merged pull requests:

v0.11.0 (2016-02-10)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • File stats are not always working properly #430
  • Inspec iptables should have_rule tests not working #420
  • Integration test for apache config #406
  • rework auditd_rules resource #312
  • resource/auditd_rules: update rule list format #309

Merged pull requests:

v0.10.1 (2016-02-05)

Full Changelog

Fixed bugs:

Merged pull requests:

v0.10.0 (2016-02-05)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • InSpec check crashes on tarball #408
  • Looks like supports is ignored from tar files #360
  • Check on archives is broken #343
  • upstart_service: fallback to config files if show-config is not available #419 (srenatus)
  • Use target helpers in Inspec::Profile#from_file #413 (srenatus)
  • fix warning in #find_files[_or_error] #403 (srenatus)

Closed issues:

  • be_enabled for upstart service on RHEL 6 not working correctly #417
  • Why is the yml file required? #414
  • remove leftover OS check methods from the file resource #397

Merged pull requests:

v0.9.11 (2016-01-29)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Logging in profile processing #349
  • runit_service: fix resource, improve integration tests #401 (srenatus)
  • basic logging setup for inspec exec #392 (srenatus)

Merged pull requests:

v0.9.10 (2016-01-25)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Windows OS Detection #383
  • security_policy is not returning the right value #373
  • PostgreSQL_Session Resource #302
  • bugfix: write given ID to metadata json #389 (arlimus)
  • resources/launchd_service: fix parsing of non-running services #387 (srenatus)
  • bugfix: pin net-ssh 2.9 in gem file #386 (chris-rock)
  • resource/postgres_session: add integration tests, change error handling #381 (srenatus)

Merged pull requests:

v0.9.9 (2016-01-16)

Full Changelog

Fixed bugs:

  • Resource registry_key { should_not exist } unavailable #322
  • bugfix: only skip regkey if required #364 (chris-rock)

Merged pull requests:

v0.9.8 (2016-01-11)

Full Changelog

Implemented enhancements:

Fixed bugs:

  • Inspec doesn't read controls #351
  • not working under windows, installed from gem #323
  • Resource 'file' missing 'be_mounted.with' #310
  • inspec check on examples generates errors #215
  • bugfix: ignore supports when generating a profile's json representation #355 (srenatus)
  • Support old "supports" field in metadata #347 (srenatus)
  • Fix custom resource loading from libraries #337 (arlimus)

Closed issues:

  • Create RFC on profile structure #296

Merged pull requests:

v0.9.7 (2015-12-21)

Full Changelog

Implemented enhancements:

  • Configuration number comparisons #308
  • Allow for reading options from a file #284
  • file resource mode matcher does not display file permissions correctly on failure #230

Fixed bugs:

  • remove commandline defaults, they break json config #327 (srenatus)
  • Fixing issue with security policy always returning nil #321 (jeremymv2)
  • reset rspec configuration when initializing Inspec::Runner #320 (srenatus)
  • EL package resource improvements: catch missing newlines & add release info #248 (troyready)

Closed issues:

  • convert logindef values to integer if possible #121

Merged pull requests:

v0.9.6 (2015-12-11)

Full Changelog

Implemented enhancements:

  • JSON configuration #292
  • Replace the pry... bits in inspec shell #267
  • Better wording for check #260
  • OS resource with string and symbol support #227
  • matcher for less-restrictive comparison #318 (chris-rock)
  • add readme to examples #313 (chris-rock)
  • Minor inspec shell improvements #283 (srenatus)
  • add kitchen-ansible inspec example #275 (alexpop)
  • add kitchen-puppet example with inspec testing #273 (alexpop)
  • Feature: Add shell help resource command #269 (chris-rock)

Fixed bugs:

  • auditd_conf parameters should be case insensitive #307
  • Processes resource doesn't handle user or state #295
  • JSON configuration #292
  • Windows file matcher does not match existing files #288
  • Inspec hangs when executing some windows profiles against linux machine #279
  • Utils::FindFiles doesn't work #276
  • etc_group not implemented for centos #266
  • Port resource returns arrays #256
  • Custom resource not available, undefined local variable or method gordon\_config #232
  • File permission checks should return false unless file exists #301 (adamleff)
  • remove json doc for windows_feature #272 (chris-rock)
  • improvement: add etc_group support for centos and add integration test #270 (chris-rock)

Merged pull requests:

v0.9.5 (2015-11-25)

Full Changelog

Implemented enhancements:

  • Support the -i switch for key files as per ssh #261
  • Add -p alias for --port like ssh #263 (alexmanly)

Merged pull requests:

v0.9.4 (2015-11-24)

Full Changelog

Fixed bugs:

  • registry_key needs to be case insensitive #254
  • User resource doesn't handle group names with spaces #238
  • inspec does not extract section name from test file header #182
  • bugfix: user resources support for group with whitespace #258 (chris-rock)
  • Bugfix: make registry_key resource case-insensitive #255 (alexpop)

Merged pull requests:

v0.9.3 (2015-11-20)

Full Changelog

Implemented enhancements:

  • Support the control keyword, synonymous to rule #188

Fixed bugs:

  • Multiple computed calls to describe aren't registered #246

Closed issues:

  • port resource does not work on CentOS #239
  • os_env not working #236
  • service resource misbehaves on upstart hosts #226
  • OS resource requires requires a Symbol not a String wrong in docs #224
  • Cannot run against remote WinRM SSL systems #221
  • Proper Changelog #211

Merged pull requests:

v0.9.2 (2015-11-06)

Full Changelog

Merged pull requests:

0.9.1 (2015-11-04)

Full Changelog

Closed issues:

Merged pull requests:

v0.9.1 (2015-11-03)

Full Changelog

0.9.0 (2015-11-03)

Full Changelog

Closed issues:

  • Make text replacements in documentation work correctly #170
  • rename project to inspec #129
  • resource integration tests #73

Merged pull requests:

0.8.0 (2015-10-21)

Full Changelog

Implemented enhancements:

  • Add WinRM transport layer #64

Closed issues:

  • ensure all resources have a proper to_s method #98
  • Escape commands before we execute them #70

Merged pull requests: