Skip to content

Commit

Permalink
Update spellcheck GH Action to the latest (#270)
Browse files Browse the repository at this point in the history
sync the config as well

Signed-off-by: Tim Smith <[email protected]>
  • Loading branch information
tas50 authored Sep 29, 2023
1 parent c2ac2d6 commit f38e3c0
Show file tree
Hide file tree
Showing 9 changed files with 46 additions and 17 deletions.
9 changes: 9 additions & 0 deletions .github/actions/spelling/expect.txt
Original file line number Diff line number Diff line change
Expand Up @@ -86,6 +86,7 @@ jwks
kickstart
lastlog
libssh
linux
localtime
logfile
logon
Expand All @@ -100,18 +101,26 @@ MRx
mydb
mysupersecretpasswordforthemasteruser
nameid
nasset
natd
ncnspec
Negoexts
nexport
nft
ngcloud
nginx
nistp
noout
nsg
ntalk
nterraform
odata
oidc
OMHVGHACB
opasswd
openat
openssh
openssl
opscode
otp
outfile
Expand Down
23 changes: 22 additions & 1 deletion .github/actions/spelling/line_forbidden.patterns
Original file line number Diff line number Diff line change
@@ -1,4 +1,4 @@
# Detect common combinations of valid words that are in fact invalid.
# Detect common combinations of valid words that are in fact invalid.
# Useful for brand capitalizations

#
Expand All @@ -9,6 +9,10 @@
\sthe Mondoo Platform\b
\sMondoo platform\b

# s.b. Compliance Hub
\scompliance hub\b
\sCompliance hubplatform\b

#
# Industry Terms
#
Expand Down Expand Up @@ -44,6 +48,20 @@
# Product Names
#

# s.b. Jira
\bJIRA\b

# s.b. MariaDB
\bMaria DB\b
\bmariaDB\b
# \bmariaDb\b causes failures in MQL queries

# s.b. PostgreSQL
\bPostgreSql\b

# s.b. Firefox
\bFireFox\b

# s.b. CentOS
\bCentos\b
\bCent OS\b
Expand Down Expand Up @@ -84,6 +102,7 @@

# s.b. Red Hat
\bRedHat\b
\bRedhat\b

# s.b. AlmaLinux
\bAlma Linux\b
Expand Down Expand Up @@ -414,6 +433,8 @@

# s.b. Cosmos DB
\bCosmosDB\b
\bCosmoDB\b
\bCosmo DB\b

# s.b. SignalR Service
\bSignalR service\b
Expand Down
2 changes: 0 additions & 2 deletions .github/actions/spelling/reject.txt
Original file line number Diff line number Diff line change
Expand Up @@ -9,5 +9,3 @@ Sorce
^untill$
^untilling$
^wether.*
\w*(?<!right-)click
press
1 change: 1 addition & 0 deletions .github/dependabot.yml
Original file line number Diff line number Diff line change
@@ -1,3 +1,4 @@
---
version: 2
updates:
- package-ecosystem: "github-actions"
Expand Down
6 changes: 3 additions & 3 deletions .github/workflows/spell-check.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -23,12 +23,12 @@ jobs:
steps:
- name: check-spelling
id: spelling
uses: check-spelling/[email protected].21
uses: check-spelling/[email protected].22
with:
suppress_push_for_open_pull_request: 1
checkout: true
post_comment: 0
dictionary_source_prefixes: '{"mondoo": "https://raw.githubusercontent.com/mondoohq/spellcheck-dictionary/main/", "cspell": "https://raw.githubusercontent.com/check-spelling/cspell-dicts/v20220816/dictionaries/"}'
dictionary_source_prefixes: '{"mondoo": "https://raw.githubusercontent.com/mondoohq/spellcheck-dictionary/main/", "cspell": "https://raw.githubusercontent.com/check-spelling/cspell-dicts/v20230509/dictionaries/"}'
extra_dictionaries:
cspell:aws/aws.txt
cspell:filetypes/filetypes.txt
Expand All @@ -47,7 +47,7 @@ jobs:
if: (success() || failure()) && needs.spelling.outputs.followup
steps:
- name: comment
uses: check-spelling/[email protected].21
uses: check-spelling/[email protected].22
with:
checkout: true
task: ${{ needs.spelling.outputs.followup }}
8 changes: 4 additions & 4 deletions README.md
Original file line number Diff line number Diff line change
Expand Up @@ -19,13 +19,13 @@ cnspec scan {TARGET} -f core/{POLICY_NAME}.mql.yaml
Examples:

```bash
# linux
# Linux
cnspec scan local -f core/mondoo-linux-security.mql.yaml

# macOS
cnspec scan local -f core/mondoo-macos-security.mql.yaml

# windows
# Windows
cnspec scan local -f core/mondoo-windows-security.mql.yaml
```

Expand All @@ -38,13 +38,13 @@ cnspec scan {TARGET} --policy mondoohq/{POLICY_UID}
Examples:

```bash
# linux
# Linux
cnspec scan local --policy mondoohq/mondoo-linux-security

# macOS
cnspec scan local --policy mondoohq/mondoo-macos-security

# windows
# Windows
cnspec scan local --policy mondoohq/mondoo-windows-security
```

Expand Down
2 changes: 1 addition & 1 deletion core/mondoo-azure-security.mql.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -1729,7 +1729,7 @@ queries:
To update using the Microsoft Azure portal:
1. Log in to the Microsoft Azure portal at https://portal.azure.com
2. Go to `SQL servers`
3. For each SQL server Click on `Auditing` and make sure `Enable Azure SQL Auditing` is set to `On`
3. For each SQL server select `Auditing` and make sure `Enable Azure SQL Auditing` is set to `On`
- uid: mondoo-azure-security-sql-server-tde-on
title: Ensure that transparent data encryption is enabled on SQL Server
impact: 60
Expand Down
2 changes: 1 addition & 1 deletion core/mondoo-vmware-vulnerability.mql.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ policies:
docs:
desc: "## Overview\n\nMondoo OpenSSL VMware vCenter Policy checks for vulnerable vCenter/ESXi configuration. It should be used in combination with the Platform Vulnerability Policy to identify missing patches.\n\n### Run policy\n\nTo run this policy against VMware vCenter:\n\n```bash\ncnspec scan vsphere [email protected]@192.168.5.24 --ask-pass -f core/mondoo-vmware-vulnerability.mql.yaml\n```\n\n## Join the community!\n\nOur goal is to build policies that are simple to deploy, accurate, and actionable. \n\nIf you have any suggestions on how to improve this policy, or if you need support, [join the community](https://github.com/orgs/mondoohq/discussions) in GitHub Discussions.\n"
groups:
- title: VMWare ESXi
- title: VMware ESXi
filters: asset.platform == "vmware-esxi"
checks:
- uid: mondoo-vmware-vulnerability-slpd-not-running
Expand Down
10 changes: 5 additions & 5 deletions core/mondoo-windows-security.mql.yaml
Original file line number Diff line number Diff line change
Expand Up @@ -2638,12 +2638,12 @@ queries:
- Open the Group Policy Management Console (GPMC).
- Create a new GPO that is linked at the domain level or that is linked to the organizational unit that contains your computer accounts. Or you can select a GPO that is already deployed.
- Right-click the GPO, and then click Edit to open the Group Policy Management Editor.
- Right-click the GPO, and then select Edit to open the Group Policy Management Editor.
- Expand Computer Configuration, expand Preferences, and then expand Windows Settings.
- Right-click Registry, point to New, and then click Registry Item. The New Registry Properties dialog box appears.
- In the Hive list, click HKEY_LOCAL_MACHINE.
- Right-click Registry, point to New, and then select Registry Item. The New Registry Properties dialog box appears.
- In the Hive list, select HKEY_LOCAL_MACHINE.
- In the Key Path list, browse to SYSTEM\CurrentControlSet\Control\Lsa.
- In the Value name box, type RunAsPPL.
- In the Value type box, click the REG_DWORD.
- In the Value type box, select the REG_DWORD.
- In the Value data box, type 00000001.
- Click OK.
- Select OK.

0 comments on commit f38e3c0

Please sign in to comment.