forked from inspec/kitchen-inspec
-
Notifications
You must be signed in to change notification settings - Fork 0
/
kitchen.yml
82 lines (77 loc) · 1.83 KB
/
kitchen.yml
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
---
driver:
name: dokken
transport:
name: dokken
provisioner:
name: dokken
chef_license: accept
verifier:
name: inspec
sudo: true
platforms:
- name: ubuntu
driver:
image: ubuntu:14.04
suites:
- name: default
run_list:
- recipe[os_prepare]
- name: profile
run_list:
- recipe[os_prepare]
- name: contains_inspec
run_list:
- recipe[os_prepare]
verifier:
inspec_tests:
- name: tmp
git: https://github.com/nathenharvey/tmp_compliance_profile.git
- name: supermarket
run_list:
- recipe[apt]
- recipe[ssh-hardening]
verifier:
inspec_tests:
- name: dev-sec/ssh-baseline
- name: backwards
run_list:
- recipe[os_prepare]
verifier:
inspec_tests:
- https://github.com/nathenharvey/tmp_compliance_profile.git
- name: duplicates
run_list:
- recipe[os_prepare]
verifier:
inspec_tests:
- path: ./test/integration/duplicates
- path: ./test/integration/duplicates
- name: inputs_inline
run_list:
- recipe[os_prepare]
verifier:
inspec_tests:
- path: ./test/integration/inputs-inline
inputs:
user: value_from_kitchen_yml_1
password: value_from_kitchen_yml_2
- name: inputs_file
run_list:
- recipe[os_prepare]
verifier:
inspec_tests:
- test/integration/inputs-file
input_files:
- test/integration/profile-inputs.yml
# before you are able to use the compliance plugin, you need to run
# insecure is only required if you use self-signed certificates
# $ inspec compliance login https://compliance.test --user admin --insecure --token ''
- name: compliance
run_list:
- recipe[apt]
- recipe[ssh-hardening]
verifier:
inspec_tests:
- name: ssh
compliance: base/ssh