| Check | Sub-check | Who | Completion Date *** | Issue #'s |
|---|---|---|---|---|
| Logical checks | Proper profile directory structure | Rony Xavier | 11/21/2018 | n/a |
| JSON output review (e.g., pass/fail on , hardened, not hardened, edge cases, etc.) |
Rony Xavier | 11/25/2018 | * | |
| InSpec syntax checker | Rony Xavier | 11/14/2018 | #9#8#6#7 | |
| Local commands focused on target not the runner | Rony Xavier | 11/21/2018 | n/a | |
| Quality checks | Alignment (including tagging) to original standard (i.e. STIG, CIS Benchmark, NIST Tags) |
Rony Xavier | 11/21/2018 | n/a |
| Descriptive output for findings details | Rony Xavier | 11/13/2018 | #5 | |
| Docs | Documentation quality (i.e. README) novice level instructions including prerequisites |
Yarick Tsagoyko | 10/31/2018 | n/a |
| Consistency across other profile conventions | Rony Xavier | 11/2/2018 | #3 | |
| Spelling grammar | Rony Xavier | 11/25/2018 | * | |
| Removing debugging documentation and code | Rony Xavier | 11/25/2018 | * | |
| Error handling | “Profile Error” containment: “null” responses should only happen if InSpec is run with incorrect privileges |
Rony Xavier | 11/13/2018 | #2#5 |
| Slowing the target (e.g. filling up disk, CPU spikes) | Rony Xavier | 11/21/2018 | n/a | |
| Check for risky commands (e.g. rm, del, purge, etc.) | Rony Xavier | 11/21/2018 | n/a | |
| Check for “stuck” situations (e.g., profile goes on forever) | Rony Xavier | 11/21/2018 | n/a |
Pausing review until general unpdates suggested in issue #5 is applied to rest of the controls
*** A completion date is entered in a row when all non-enhancement issues are resolved for that review row.