-
Notifications
You must be signed in to change notification settings - Fork 683
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
RFC: Compliance Profile Structure #252
Conversation
e538b24
to
71d4f33
Compare
Do not merge, until I added a integration test with test-kitchen |
0c9ab45
to
a9ab812
Compare
As discussed in #compliance-support, we should have the ability to include/require controls from an optionally specified location on the filesystem. |
@kennonkwok Yeah, that is a fantastic point. Will add this to this implementation. |
|
||
$ inspec exec test.rb | ||
|
||
While this approach is very handy for quick tests, it has its limitation for a collection of tests. Once the amount of tests grows, we need mechanoisms to organize our code and re-use existing rules. |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
SP: mechanisms
Apart from the spelling i pointed out, this looks good 👍 |
@jjasghar Thanks for the feedback. Will fix this. |
49f5fbb
to
9f573db
Compare
9f573db
to
de98f51
Compare
80c3e7f
to
3aff4e8
Compare
3aff4e8
to
6ad217a
Compare
Solves #296 |
ec9d9e5
to
35b8d13
Compare
423e479
to
e5d4246
Compare
354fc94
to
5269325
Compare
👍 , great to get this in! |
Thanks everyone for contributing to the discussion around profile structure!! 🎊 |
RFC: Compliance Profile Structure
Before introducing InSpec profiles in #252 we had `metadata.rb` keep all information. This included an undisclosed field called `supports`. However, this field was never actually used in practice. So for legacy profiles, this means that `supports` was ignored. In order to keep old profiles running in exactly the way they were before, ignore this field when reading from metadata.rb
Features
metadata.yml
instead ofmetadata.rb
skip_rule
toskip_control
test
tocontrols
to harmonize the naminginspec check
properlyCheck that the profile is okay
Generate tar archive
Run the tar archive