config/cookstyle.yml in cookstyle-7.27.0 vs config/cookstyle.yml in cookstyle-7.28.2
- old
+ new
@@ -512,10 +512,20 @@
Enabled: true
VersionAdded: '7.27'
Include:
- '**/metadata.rb'
+Chef/Correctness/InvalidNotificationResource:
+ Description: The resource to notify when calling `notifies` or `subscribes` must be a string.
+ StyleGuide: 'chef_correctness_invalidnotificationresource'
+ Enabled: true
+ VersionAdded: '7.28'
+ Exclude:
+ - '**/attributes/*.rb'
+ - '**/metadata.rb'
+ - '**/Berksfile'
+
###############################
# Chef/Sharing: Issues that prevent sharing code with other teams or with the Chef community in general
###############################
Chef/Sharing:
@@ -2287,9 +2297,27 @@
Enabled: true
VersionAdded: '7.14.0'
Include:
- '**/controls/*.rb'
+#### Security Cops
+
+Chef/Security:
+ StyleGuideBaseURL: https://docs.chef.io/workstation/cookstyle/
+
+Chef/Security/ :
+ Description: Do not include plain text SSH private keys in your cookbook code. This sensitive data should be fetched from secrets management systems so that secrets are not uploaded in plain text to the Chef Infra Server or committed to source control systems.
+ StyleGuide: 'chef_security_sshprivatekey'
+ Enabled: true
+ VersionAdded: '7.28'
+ Include:
+ - '**/libraries/*.rb'
+ - '**/resources/*.rb'
+ - '**/providers/*.rb'
+ - '**/recipes/*.rb'
+ - '**/attributes/*.rb'
+ - '**/definitions/*.rb'
+
#### The base rubocop 0.37 enabled.yml file we started with ####
Layout/AccessModifierIndentation:
Enabled: true
Layout/AlignArray:
\ No newline at end of file