Merge pull request #183 from dev-sec/codespell

add spellchecking with codespell
dev-sec · May 2, 2023 · 9d57fea · 9d57fea
2 parents ce0e4c6 + 6cfbd38
commit 9d57fea
Show file tree

Hide file tree

Showing 3 changed files with 17 additions and 5 deletions.
diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml
@@ -0,0 +1,12 @@
+---
+name: Codespell - Spellcheck
+
+on:  # yamllint disable-line rule:truthy
+  push:
+    branches: [master]
+  pull_request:
+    branches: [master]
+
+jobs:
+  codespell:
+    uses: "dev-sec/.github/.github/workflows/codespell.yml@main"
diff --git a/controls/os_spec.rb b/controls/os_spec.rb
@@ -60,25 +60,25 @@
 mount_exec_blocklist = input(
   'mount_exec_blocklist',
   value: ['/boot', '/dev', '/dev/shm', '/tmp', '/var/log', '/var/log/audit', '/var/tmp'],
-  description: 'List of mountspoints where \'noexec\' mount option shoud be set'
+  description: 'List of mountpoints where \'noexec\' mount option should be set'
 )
 
 mount_suid_blocklist = input(
   'mount_suid_blocklist',
   value: ['/boot', '/dev', '/dev/shm', '/home', '/run', '/tmp', '/var', '/var/log', '/var/log/audit', '/var/tmp'],
-  description: 'List of mountpoints where \'nosuid\' mount option shoud be set'
+  description: 'List of mountpoints where \'nosuid\' mount option should be set'
 )
 
 mount_dev_blocklist = input(
   'mount_dev_blocklist',
   value: ['/boot', '/dev/shm', '/home', '/run', '/tmp', '/var', '/var/log', '/var/log/audit', '/var/tmp'],
-  description: 'List of mountpoints where \'nodev\' mount option shoud be set'
+  description: 'List of mountpoints where \'nodev\' mount option should be set'
 )
 
 control 'os-01' do
   impact 1.0
   title 'Trusted hosts login'
-  desc "hosts.equiv file is a weak implemenation of authentication. Disabling the hosts.equiv support helps to prevent users from subverting the system's normal access control mechanisms of the system."
+  desc "hosts.equiv file is a weak implementation of authentication. Disabling the hosts.equiv support helps to prevent users from subverting the system's normal access control mechanisms of the system."
   describe file('/etc/hosts.equiv') do
     it { should_not exist }
   end

diff --git a/libraries/suid_blacklist.rb b/libraries/suid_blacklist.rb
@@ -4,7 +4,7 @@
 
 class SUIDBlacklist < Inspec.resource(1)
   name 'suid_blacklist'
-  desc 'The suid_blacklist resoruce returns the default suid blacklist'
+  desc 'The suid_blacklist resource returns the default suid blacklist'
 
   def default
     [