Open clintoncwolfe opened 6 years ago
I really like the idea of adding the stability index to resources. I think we also need to define a clear path for resource to get into inspec core. e.g. only stable and locked resources should be in core, all other resources should be in resource packs. That allows us to balance velocity/features with stability.
I think there is a place in inspec core for experimental resources / features, especially if they are disabled by default or trigger warnings when used. I see several motivations for this:
aws_iam_user
was stable for months before the core merge; and today while in core, there are things that are underdeveloped. These aren't so much about "allowing experimental resources in core" as they are about "does the resource-pack development model work smoothly".
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. We value your input and contribution. Please leave a comment if this issue still affects you.
I think this important to the ability of user to make decisions about whether to use a resource or not.
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. We value your input and contribution. Please leave a comment if this issue still affects you.
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. We value your input and contribution. Please leave a comment if this issue still affects you.
π Description
π feature request
We'd like to be able to express the stability of individual resources (and ideally, individual features) in a robust way. This was proposed before in the earlier days of InSpec. With cloud platform support, we see a tension between wanting to offer stable, secure functionality; and using API introspection to rapidly gain broad coverage of cloud platforms. This has come up a few times; most recently on the inspec-gcp project issue 25.
One middle ground might be to allow resources to declare their level of stability.
These are just example names. Other names or criteria are welcome to be defined.
Additional behavior:
inspec check
aware of stability.π InSpec and Platform Version
2.2.10
Attn: @arlimus @jquick @chris-rock @trickyearlobe
Aha! Link: https://chef.aha.io/features/SH-2321