wdower

To add context on what we're trying to build here: Our goal is to build an overlay for a baseline that is divided into three categories for high/moderate/low security target...

@ejaronne @aaronlippold and I talked about how the `cis_controls` tag should be recorded in an InSpec control, and agreed on an array of hashes. This is because there are CIS...

Delta works using the JSON of the InSpec profile that we are updating (`inspec json > profile.json`). `inspec json` is evaluating the strings in the profile's .rb files before adding...

Running `yarn start:dev` now also starts up Swagger at `http://localhost:3000/api`, giving rudimentary API documentation -- at this point just lists the API endpoints. Need to figure out how to fill...

So the problem here is that apparently the AWS API throws a "NoSuchEntity" error even when the password policy is set to the **defaults**. Any customizing of the password policy...

Ref: https://github.com/aws/aws-cli/issues/7265 This is a bug in the API.

I'm also hitting this bug in the AWS CLI and the SDK. CLI command: ``` ruby $> aws iam get-account-password-policy --debug 2>&1 | tee error.log 2023-12-11 21:29:17,379 - MainThread -...

I'm running into an issue trying to connect to a Windows EC2 even though it does have wmic.exe installed. ``` $> inspec detect -t winrm:// --client-cert=winrm.crt --client-key=wimrm.key --ca-trust-file= --ssl -l...