Adoptable Cookbooks List

Looking for a cookbook to adopt? You can now see a list of cookbooks available for adoption!
List of Adoptable Cookbooks

Supermarket Belongs to the Community

Supermarket belongs to the community. While Chef has the responsibility to keep it running and be stewards of its functionality, what it does and how it works is driven by the community. The chef/supermarket repository will continue to be where development of the Supermarket application takes place. Come be part of shaping the direction of Supermarket by opening issues and pull requests or by joining us on the Chef Mailing List.

Select Badges

Select Supported Platforms

Select Status

RSS

audit_time_window (1) Versions 0.1.0

Manages restricting InSpec profiles via the audit cookbook to a time window

Policyfile
Berkshelf
Knife
cookbook 'audit_time_window', '~> 0.1.0', :supermarket
cookbook 'audit_time_window', '~> 0.1.0'
knife supermarket install audit_time_window
knife supermarket download audit_time_window
README
Dependencies
Quality 17%

Audit Time Window

This cookbook allows for controlling additional compliance profiles to be added within time windows that they are valid to run. The windows are controlled by an attribute hash of times with the profile to that are valid to run within those times. If the Chef client does not have an InSpec audit scheduled during that timeframe, these profiles will not be added, they are strictly only available within these times.

Output

When the cookbook is added to the run list, if it has scheduled a profile the output is logged:

   Recipe: audit_time_window::default
     * log[Audit Time Window has scheduled uptime at 748 between 730 and 750.] action write

If a matching window is not found there is no logging message.

Attributes

The format for adding InSpec profiles managed by audit_time_window is the same for adding standard compliance profiles, but the attribute namespace is audit_time_window instead of audit and there are 2 additional attributes of arrays. The start and end arrays map 1-1 where the first time in the start completes with the first time in the end. Following this example:

default['audit_time_window']['profiles']['linux-patch-baseline']['url'] = 'https://github.com/dev-sec/linux-patch-baseline'
default['audit_time_window']['profiles']['linux-patch-baseline']['start'] = ['0300', '1500']
default['audit_time_window']['profiles']['linux-patch-baseline']['end'] = ['0400', '1600']

There are 2 time windows of 3-4AM and 3-4PM where this profile may be checked.

Audit Artifactory Cookbook

If you are using the audit_artifactory set

default['audit_time_window']['profiles']['linux-patch-baseline']['audit_artifactory'] = true

and the profile will be copied into the audit_artifactory namespace for processing by that cookbook at run time.

Limitations

If the Chef client does not run during the prescribed time window and the audit is not scheduled during that run, the profile may still be skipped.
No support for scheduling besides hour and minutes within the day, no cron semantics.

Dependent cookbooks

audit ~> 9.0.0

Contingent cookbooks

There are no cookbooks that are contingent upon this one.

Collaborator Number Metric
            

0.1.0 failed this metric

Failure: Cookbook has 0 collaborators. A cookbook must have at least 2 collaborators to pass this metric.

Contributing File Metric
            

0.1.0 failed this metric

Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a CONTRIBUTING.md file

Foodcritic Metric
            

0.1.0 failed this metric

FC067: Ensure at least one platform supported in metadata: audit_time_window/metadata.rb:1
Run with Foodcritic Version 16.3.0 with tags metadata,correctness ~FC031 ~FC045 and failure tags any

No Binaries Metric
            

0.1.0 passed this metric

Testing File Metric
            

0.1.0 failed this metric

Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must contain a TESTING.md file

Version Tag Metric
            

0.1.0 failed this metric

Failure: To pass this metric, your cookbook metadata must include a source url, the source url must be in the form of https://github.com/user/repo, and your repo must include a tag that matches this cookbook version number