Category:

Chef InSpec


5 Things You Can Do with Chef InSpec Input

Chef InSpec defines security and compliance rules as executable code for testing and auditing applications and infrastructure. Chef InSpec compares the actual state of a system with the desired state that is expressed in easy-to-read and easy-to-write code.

Read more
Posted in:

What’s in an endpoint? Managing laptops with Chef

For over 11 years Chef customers and community have trusted us to manage their infrastructure and servers, so it should be no surprise that you can also manage desktops and laptops just as effectively by using Chef Effortless Infrastructure Suite.

Read more

InSpec and the Too-Long(?) Life of Security Policies

This blog post by Chris Swan, Policy Debt, was included in the September 8, 2019 edition of DevOps Weekly (subscribe here if you haven’t already). Many of the points Chris raises are likely familiar to folks who have been working in operations, systems engineering, or DevOps for any length of time.

Read more
Posted in:

Protect Yourself From the RubyGems Backdoor by InSpec’ing Your Fleet

Chef has invested a lot with the Enterprise Automation Stack in security. With Chef InSpec you can easily scan your systems for potential vulnerabilities and then leverage Chef Infra to run remediation across your entire fleet. This is important because last week’s RubyGems vulnerability likely affected other software you have deployed that uses Ruby.

Read more

Chef Confirms No Products Affected by Backdoored RubyGems

At Chef, we have a cross-functional security team who evaluates and responds to potential security incidents. Because a significant portion of our code uses Ruby and Ruby libraries (known as “gems”), we have been paying close attention to the reports of malicious code insertion into several gems.

Read more
Posted in:

Learn Chef Rally: What a Treat!

The Learn Chef Rally team is celebrating a major milestone, and you’re invited to party with us!

Read more

Cloud Security Assessments in AWS

In our most recent webinar, Cloud Security Assessment for AWS Instances, we took a look at how Chef can help to secure environments in Amazon Web Services.

Read more

Secure Your Cloud Estate with Continuous Audits

To meet the demands of an ever more connected world, executing on a comprehensive cloud strategy has become a critical component for organizations at any scale.

Read more

Don’t Leave Your S3 Buckets Wide Open

IT security can feel like an endless war against the unknown. Especially when your big old comfortable monolith with one access point gets spread out into a million small microservice pieces all over the place. Securing distributed systems is a challenge that requires constant vigilance and attention to detail.

Read more

Reintro to Chef InSpec 4.0 and End of Life Announcement for v1.x and v2.x

With all of the excitement during ChefConf 2019, you may have missed that we released Chef InSpec 4.0 in May 2019. We put a focus on optimizing the core Chef InSpec product while making it more extensible and capable in handling the next generation of resources. The highlights of Chef InSpec version 4.

Read more

Chef Cloud Security and Chef InSpec 5 Launch
image_334

FOLLOW @CHEF

Chef InSpec