Cookstyle 6.6 released with 4 new Chef cops!

Chef Release Announcements
1

Hey folks,

NASA may have scrubbed for weather today, but we're here to launch a new version of Cookstyle and Florida storms can't stop us! Enjoy these new cops and autocorrection improvements bringing the grand total number of Chef cops to 194!

4 New Cops

ChefCorrectness/LazyEvalNodeAttributeDefaults

The ChefCorrectness/LazyEvalNodeAttributeDefaults cop detects custom resource properties using node attribute default values without wrapping those attributes with the lazy method. The lazy helper method ensures that node data is available at the time of resource execution.

Enabled by default: True

Autocorrects: Yes

ChefCorrectness/OpenSSLPasswordHelpers

The ChefCorrectness/OpenSSLPasswordHelpers cop detects the usage of the legacy Opscode::OpenSSL::Password class from the openssl cookbook. This class included a secure_password helper method that would generate a random password for use when a data bag or attribute was not present. The practice of generating passwords to be stored on the node is bad security practice as it exposes the password to anyone that can view the nodes, and deleting a node deletes the password. Passwords should be retrieved from a secure source for use in cookbooks.

Enabled by default: True

Autocorrects: No

ChefCorrectness/InvalidPlatformFamilyInCase

The ChefCorrectness/InvalidPlatformFamilyInCase cop detects cookbooks that use case node['platform_family'] with an incorrect platform family name.

Enabled by default: True

Autocorrects: Yes

ChefCorrectness/InvalidPlatformInCase

The ChefCorrectness/InvalidPlatformInCase cop detects cookbooks that use case node['platform'] with an incorrect platform name.

Enabled by default: True

Autocorrects: Yes

Other Improvements

  • The ChefModernize/UseMultipackageInstalls has been updated to detect additional forms of creating multiple package resources from an Array of package names.
  • The ChefDeprecations/IncludingXMLRubyRecipe autocorrect has been updated to remove any inline conditionals.
  • Added oracle as an invalid platform family for cops validating platform families.
  • All cops now include links to documentation that can be enabled by running Cookstyle with the --display-style-guide command line flag.

Enjoy,
Tim