dev-sec
diff --git a/‎.travis.yml‎
Lines changed: 4 additions & 1 deletion b/‎.travis.yml‎
Lines changed: 4 additions & 1 deletion
diff --git a/‎Gemfile‎
Lines changed: 6 additions & 0 deletions b/‎Gemfile‎
Lines changed: 6 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 22 additions & 23 deletions b/‎README.md‎
Lines changed: 22 additions & 23 deletions
diff --git a/‎Rakefile‎
Lines changed: 12 additions & 32 deletions b/‎Rakefile‎
Lines changed: 12 additions & 32 deletions
diff --git a/‎lockdown/inspec/os_spec.rb‎ ‎controls/os_spec.rb‎lockdown/inspec/os_spec.rb renamed to controls/os_spec.rb b/‎lockdown/inspec/os_spec.rb‎ ‎controls/os_spec.rb‎lockdown/inspec/os_spec.rb renamed to controls/os_spec.rb
diff --git a/‎lockdown/inspec/package_spec.rb‎ ‎controls/package_spec.rb‎lockdown/inspec/package_spec.rb renamed to controls/package_spec.rb b/‎lockdown/inspec/package_spec.rb‎ ‎controls/package_spec.rb‎lockdown/inspec/package_spec.rb renamed to controls/package_spec.rb
@@ -1,8 +1,11 @@
 sudo: false
+language: ruby
 cache: bundler
 
 rvm:
   - 1.9.3
   - 2.0.0
   - 2.2.0
-language: ruby
+
+bundler_args: --without integration
+script: bundle exec rake
@@ -10,3 +10,9 @@ gem 'rake'
 gem 'inspec', '~> 0.9'
 gem 'rubocop',    '~> 0.23'
 gem 'highline', '~> 1.6.0'
+
+# pin dependency for Ruby 1.9.3 since bundler is not
+# detecting that net-ssh 3 does not work with 1.9.3
+if Gem::Version.new(RUBY_VERSION) <= Gem::Version.new('1.9.3')
+  gem 'net-ssh', '~> 2.9'
+end
@@ -1,45 +1,44 @@
 tests-os-hardening
 ==================
 
-This are the integration tests for the projects
+This Compliance Profile ensures, that all hardening projects keep the same quality.
 
 - https://github.com/hardening-io/puppet-os-hardening
 - https://github.com/hardening-io/chef-os-hardening
 - https://github.com/hardening-io/ansible-os-hardening
- 
-They start at `integration` level.
-
-you can use the gem `kitchen-sharedtests`
-
-- https://github.com/ehaselwanter/kitchen-sharedtests/
-
-to make them available to your project. Use `thor kitchen:fetch-remote-tests` to put the repo into `test/integration`.  
 
 ## Standalone Usage
 
-You can target the integration tests to any host where you have ssh access.
-
-`rake -T` gives you a list of suites you can run (we'll ignore directories which are obviously not suites for now)
+This Compliance Profile requires [InSpec](https://github.com/chef/inspec) for execution:
 
 ```
-± rake -T
-rake serverspec:data_bags  # Run serverspec suite data_bags
-rake serverspec:default    # Run serverspec suite default
+$ git clone https://github.com/hardening-io/tests-os-hardening
+$ inspec exec tests-os-hardening
 ```
 
-Run it with:
+You can also execute the profile directly from Github:
 
 ```
-bundle install
+$ inspec exec https://github.com/hardening-io/tests-os-hardening
+```
 
-# default user and ssh-key
+## License and Author
 
-bundle exec rake serverspec:default target_host=<name-or-ip-of-target-server>
+* Author:: Patrick Muench <patrick.meier111@googlemail.com>
+* Author:: Dominik Richter <dominik.richter@googlemail.com>
+* Author:: Christoph Hartmann <chris@lollyrock.com>
+* Author:: Edmund Haselwanter <me@ehaselwanter.com>
 
-# or with user, host, password
+* Copyright 2014-2016, The Hardening Framework Team
 
-ASK_LOGIN_PASSWORD=true bundle exec rake serverspec:default target_host=192.168.1.222 user=stack
-```
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
 
-Add `format=html|json` to get a report.html or report.json document.
+    http://www.apache.org/licenses/LICENSE-2.0
 
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
@@ -1,7 +1,7 @@
+#!/usr/bin/env rake
 # encoding: utf-8
 
-require 'rake'
-require 'rspec/core/rake_task'
+require 'rake/testtask'
 require 'rubocop/rake_task'
 
 # Rubocop
@@ -10,37 +10,17 @@ task :rubocop do
   RuboCop::RakeTask.new
 end
 
-# Lint the cookbook
-desc 'Run linters'
-task :run_all_linters => [:rubocop] # rubocop:disable Style/HashSyntax
-task :default => :run_all_linters # rubocop:disable Style/HashSyntax
+# lint the project
+desc 'Run robocop linter'
+task lint: [:rubocop]
 
-# Serverspec tests
-suites = Dir.glob('*').select { |entry| File.directory?(entry) }
+# run tests
+task default: [:lint, 'test:check']
 
-class ServerspecTask < RSpec::Core::RakeTask
-  attr_accessor :target
-
-  def spec_command
-    if target.nil?
-      puts 'specify either env TARGET_HOST or target_host='
-      exit 1
-    end
-
-    cmd = super
-    "env TARGET_HOST=#{target} STANDALONE_SPEC=true #{cmd}  --format documentation --no-profile"
-  end
-end
-
-namespace :serverspec do
-  suites.each do |suite|
-    desc "Run serverspec suite #{suite}"
-    ServerspecTask.new(suite.to_sym) do |t|
-      t.rspec_opts = '--no-color --format html --out report.html' if ENV['format'] == 'html'
-      t.rspec_opts = '--no-color --format json --out report.json' if ENV['format'] == 'json'
-      t.target = ENV['TARGET_HOST'] || ENV['target_host']
-      t.ruby_opts = "-I #{suite}/serverspec"
-      t.pattern = "#{suite}/serverspec/*_spec.rb"
-    end
+namespace :test do
+  # run inspec check to verify that the profile is properly configured
+  task :check do
+    dir = File.join(File.dirname(__FILE__))
+    sh("bundle exec inspec check #{dir}")
   end
 end