Dean Wilson deanwilson

This uses terraform's template_file resource to generate a yaml properties file for serverspec to use.

tests

Tests will be matched based on roles defined for a given node.

	pdk build
	pdk (INFO): This module is not compatible with PDK, so PDK can not validate or test this build. Unvalidated modules may have errors when uploading to the Forge. To make this module PDK compatible and use validate features, cancel the build and run `pdk convert`.
	Continue build without converting? no
	pdk (INFO): Build cancelled; exiting.



	$ pdk convert

	------------Files to be added-----------

	git clone https://github.com/alphagov/govuk-puppet.git
	cd govuk-puppet/

	git log --format=format: --name-only --since=18.month \| egrep -v '^$' \| sort \| uniq -c \| sort -nr \| head -15
	198 hieradata/common.yaml
	178 hieradata_aws/common.yaml
	151 hieradata_aws/integration.yaml
	143 Rakefile
	123 hieradata_aws/staging.yaml
	114 hieradata_aws/production.yaml

	extern crate rand;

	use rand::Rng;
	use std::cmp::Ordering;
	use std::io;

	fn main() {
	println!("Guess the number!");

	let secret_number = rand::thread_rng().gen_range(1, 101);

	## cat main.tf

	variable "vpc_id" {
	type = string
	description = "VPC ID to deploy to"

	validation {
	#condition = can(regex("^vpc-", var.vpc_id))
	condition = length(var.vpc_id) > 4 && substr(var.vpc_id, 0, 4) == "vpc-"
	error_message = "The vpc_id must be a valid VPC ID of the form 'vpc-'."

	## command
	conftest test -i ini samples/multiple-repos-broken.repo

	## Policy
	cat policy/yum-repo-security-settings.rego
	package main

	deny[msg] {
	reponame := input[_] # gets the contents of the structure, not the [foo] value.
	not input[reponame].gpgcheck = 1

	repos:
	- repo: local
	hooks:
	- id: restricted-filenames
	name: Check commits for unexpected file extensions
	entry: These file extensions are unusual and should be checked
	language: fail
	files: '.*\.(xlsx\|doc)'
	- id: restricted-file-types
	name: Check commits for unexpected file types