https://github.com/sommerfeld-io/inspec-profiles
Collection of Chef Inspec profiles for use in other sommerfeld-io projects
https://github.com/sommerfeld-io/inspec-profiles
inspec testing
Last synced: 3 months ago
JSON representation
Collection of Chef Inspec profiles for use in other sommerfeld-io projects
- Host: GitHub
- URL: https://github.com/sommerfeld-io/inspec-profiles
- Owner: sommerfeld-io
- License: mit
- Created: 2025-04-17T11:08:07.000Z (about 1 year ago)
- Default Branch: main
- Last Pushed: 2026-02-03T03:31:10.000Z (5 months ago)
- Last Synced: 2026-02-03T17:24:27.387Z (5 months ago)
- Topics: inspec, testing
- Language: Ruby
- Homepage: https://sommerfeld-io.github.io/inspec-profiles/
- Size: 2.53 MB
- Stars: 0
- Watchers: 0
- Forks: 0
- Open Issues: 0
-
Metadata Files:
- Readme: README.md
- License: LICENSE.md
Awesome Lists containing this project
README
# Introduction to Inspec Profiles
[file-issues]: https://github.com/sommerfeld-io/inspec-profiles/issues
[project-board]: https://github.com/orgs/sommerfeld-io/projects/1/views/1
This project is a collection of Chef Inspec profiles for use in other [sommerfeld-io](https://github.com/sommerfeld-io) projects.
- [Sonarcloud Code Quality and Security Analysis](https://sonarcloud.io/project/overview?id=sommerfeld-io_inspec-profiles)
- [Where to file issues][file-issues]
- [Project Board for Issues and Pull Requests][project-board]
## Profiles
This repository contains multiple profiles in subfolders. You cannot run them directly from the GitHub URL like single-profile repositories. So commands like `inspec exec https://github.com/dev-sec/linux-baseline` for the [Linux Baseline](https://github.com/dev-sec/linux-baseline) will not work. Instead, you need to either include the profiles as a dependency in your own profile or clone this repository and run the profiles from your local filesystem. See the individual profile README files for detailed usage instructions.
- [container-essentials](profiles/container-essentials/README.md)
- [linux-essentials](profiles/linux-essentials/README.md)
All profiles are tested with [`chef/inspec:5.22.76`](https://hub.docker.com/r/chef/inspec).
## Risks and Technical Debts
All issues labeled as `risk` (= some sort of risk or a technical debt) or `security` (= disclosed security issues - e.g. CVEs) [are tracked as GitHub issue](https://github.com/sommerfeld-io/inspec-profiles/issues?q=is%3Aissue+label%3Asecurity%2Crisk+is%3Aopen) and carry the respective label.
## Contact
Feel free to contact me via or [raise an issue in this repository][file-issues].