goss
rspec-terraform-based
Our great sponsors
| goss | rspec-terraform-based | |
|---|---|---|
| 13 | 1 | |
| 5,441 | - | |
| 0.8% | - | |
| 7.6 | - | |
| 5 days ago | - | |
| Go | ||
| Apache License 2.0 | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
goss
-
Tools for validating K8s features
Certain checks may be possible with goss and the kgoss wrapper: https://github.com/goss-org/goss/tree/master/extras/kgoss
-
Is docker the right tool for my use case? (testing an installscript)
Docker would work. I suggest also integrating infrastructure tests to validate your install script behaved as expected. For example, you could use goss.
-
Alternative to InSpec: what do you use to "assert things have been correctly configured"?
I've used https://github.com/goss-org/goss in the past and enjoyed it
-
Portable security testing tooling (not chef inspec)
To answer my own question... https://github.com/goss-org/goss looks like it might do the job - at least for Linux. Windows support is alpha - and there isn't a wealth of CIS benchmarks. Might be a good project to contribute to
-
Implement DevSecOps to Secure your CI/CD pipeline
Adding an extra layer of security on the container image to verify if it is working as expected and has all required files with correct permissions. We can use dgoss to do validation tests of container images.
-
What are some of the best tools you have discovered as a Sysadmin?
Bit of a strange one here - Goss. This is a testing tool that we use on all of our servers to validate they are working as expected. Think of it as a sanity check after changes. We have a set of tests setup that validate that the server is working as expected and we run it automatically after any change.
-
what's your goto tool for smoke-testing your site? tls, security headers, 401's, 403's, custom 404, 500 pages, redirects etc.
check out https://github.com/aelsabbahy/goss
- CI/CD Pipelines for testing standard open-source Distro like Ubuntu with docker images on it?
- Looking for tools to help smoke test kubernetes clusters
-
How To Use Terraform like a Pro: Part 1
Use GOSS, a YML-based open-source tool that can assert the test results (i.e., verifying if the SSH port 22 is closed or not).
rspec-terraform-based
-
How To Use Terraform like a Pro: Part 1
Do unit testing using RSpechttps://github.com/bsnape/rspec-terraform-based tools, such as Serverspec and Inpec. You can also use a TDD approach, but I personally feel this slows down the development work.
What are some alternatives?
container-structure-test - validate the structure of your container images
kitchen-terraform - Test Kitchen plugins for testing Terraform configurations
inspec - InSpec: Auditing and Testing Framework
tflint - A Pluggable Terraform Linter
ansible-collection-hardening - This Ansible collection provides battle tested hardening for Linux, SSH, nginx, MySQL
terraformer - CLI tool to generate terraform files from existing infrastructure (reverse Terraform). Infrastructure to Code
configure-aws-credentials - Configure AWS credential environment variables for use in other GitHub Actions.
bats - Bash Automated Testing System
ebpf - ebpf-go is a pure-Go library to read, modify and load eBPF programs and attach them to various hooks in the Linux kernel.
testkube - ☸️ Kubernetes-native Test Execution and Orchestration framework. It runs all types of tests, including Load Testing, End To End Testing, Front End, API Testing, etc... Integrates directly with you testing stack (K6, Postman, Playwright, Cypress,..)
powerlevel10k - A Zsh theme