Chef InSpec 7.0.107 Released!

Hello InSpec friends!
We are delighted to announce the availability of Chef InSpec version 7.0.107!

Improvements

• Added support for detecting Chainguard Linux distros (Wolfi and Chainguard OS). (train #812)

• Added support for TCPS connections to an Oracle database while using oracledb_session resource ((#7684)

  This adds the following additional parameters for TCPS connection

  • tns_alias: TNS alias from Oracle's tnsnames.ora configuration file (recommended for TCPS and SSL connections)
  • env: A hash of environment variables (for example, TNS_ADMIN, LD_LIBRARY_PATH, ORACLE_HOME)

  For example:

  sql = oracledb_session(
  user: 'my_user',
  password: 'password',
  tns_alias: 'MYDB_TCPS',
  env: {
    'TNS_ADMIN' => '/path/to/tnsnames',
    'LD_LIBRARY_PATH' => '/opt/oracle/instantclient'
   }
  )
  
  describe sql.query('SELECT * FROM dual').row(0).column('dummy') do
    its('value') { should eq 'X' }
  end
  

Bug fixes

• Fixed an issue affecting Windows versions where the WMIC utility is deprecated or removed (Windows 10 version 2004 and later, and Windows 11), which prevented InSpec from detecting the system architecture. Train now falls back to CMD commands (systeminfo and environment variables) when WMIC isn't available. (train #813)

Security fixes

• Updated aws-sdk-s3 to ~> 1.208.0 (train-aws #588)
• Updated aws-partitions to ~> 1.992.0 (train-aws #588)
• Updated aws-sdk-core to ~> 3.234.0 (train-aws #588)
• We improved InSpec security on Windows by preventing someone from escalating privileges with an insecure named pipe by enforcing strict ownership validation with Train before connection. (train #818)

Dependency updates

• Updated ffi from ~> 1.16.0 to >= 1.16.0, < 1.18 (train #814)
• Updated ostruct from ~> 0.1.0 to ~> 0.6.0 (train #819)