About kitchen-inspec
Use Chef InSpec as a Kitchen verifier with kitchen-inspec
.
Add the Chef InSpec verifier to the .kitchen.yml
file:
verifier:
name: inspec
Use a compliance profile from the Chef Compliance server:
suites:
- name: compliance
run_list:
- recipe[ssh-hardening::default]
verifier:
inspec_tests:
- compliance://base/ssh
and then run the following command:
inspec compliance login https://compliance.test --user admin --insecure --token ''
where --insecure
is required when using self-signed certificates.
Use a compliance profile from the Chef Supermarket:
suites:
- name: supermarket
run_list:
- recipe[ssh-hardening::default]
verifier:
inspec_tests:
- supermarket://dev-sec/ssh-baseline
Use Chef InSpec tests from the local file system:
suites:
- name: local
run_list:
- recipe[my_cookbook::default]
verifier:
inspec_tests:
- test/integration/default
Check out Detect and correct with Test Kitchen on Learn Chef Rally for a hands-on look at how to use Test Kitchen to run Chef InSpec profiles.
© Chef Software, Inc.
Licensed under the Creative Commons Attribution 3.0 Unported License.
The Chef™ Mark and Chef Logo are either registered trademarks/service marks or trademarks/servicemarks of Chef, in the United States and other countries and are used with Chef Inc's permission.
We are not affiliated with, endorsed or sponsored by Chef Inc.
https://docs.chef.io/inspec/plugin_kitchen_inspec/