Merge pull request #183 from dev-sec/codespell

schurzi · web-flow · commit 9d57fead33ca · 2023-05-02T14:51:35.000+02:00
add spellchecking with codespell
diff --git a/.github/workflows/codespell.yml b/.github/workflows/codespell.yml
@@ -0,0 +1,12 @@
+---
+name: Codespell - Spellcheck
+
+on:  # yamllint disable-line rule:truthy
+  push:
+    branches: [master]
+  pull_request:
+    branches: [master]
+
+jobs:
+  codespell:
+    uses: "dev-sec/.github/.github/workflows/codespell.yml@main"
diff --git a/controls/os_spec.rb b/controls/os_spec.rb
@@ -60,25 +60,25 @@
 mount_exec_blocklist = input(
   'mount_exec_blocklist',
   value: ['/boot', '/dev', '/dev/shm', '/tmp', '/var/log', '/var/log/audit', '/var/tmp'],
-  description: 'List of mountspoints where \'noexec\' mount option shoud be set'
+  description: 'List of mountpoints where \'noexec\' mount option should be set'
 )
 
 mount_suid_blocklist = input(
   'mount_suid_blocklist',
   value: ['/boot', '/dev', '/dev/shm', '/home', '/run', '/tmp', '/var', '/var/log', '/var/log/audit', '/var/tmp'],
-  description: 'List of mountpoints where \'nosuid\' mount option shoud be set'
+  description: 'List of mountpoints where \'nosuid\' mount option should be set'
 )
 
 mount_dev_blocklist = input(
   'mount_dev_blocklist',
   value: ['/boot', '/dev/shm', '/home', '/run', '/tmp', '/var', '/var/log', '/var/log/audit', '/var/tmp'],
-  description: 'List of mountpoints where \'nodev\' mount option shoud be set'
+  description: 'List of mountpoints where \'nodev\' mount option should be set'
 )
 
 control 'os-01' do
   impact 1.0
   title 'Trusted hosts login'
-  desc "hosts.equiv file is a weak implemenation of authentication. Disabling the hosts.equiv support helps to prevent users from subverting the system's normal access control mechanisms of the system."
+  desc "hosts.equiv file is a weak implementation of authentication. Disabling the hosts.equiv support helps to prevent users from subverting the system's normal access control mechanisms of the system."
   describe file('/etc/hosts.equiv') do
     it { should_not exist }
   end
diff --git a/libraries/suid_blacklist.rb b/libraries/suid_blacklist.rb
@@ -4,7 +4,7 @@
 
 class SUIDBlacklist < Inspec.resource(1)
   name 'suid_blacklist'
-  desc 'The suid_blacklist resoruce returns the default suid blacklist'
+  desc 'The suid_blacklist resource returns the default suid blacklist'
 
   def default
     [

Original file line number	Diff line number	Diff line change
`@@ -4,7 +4,7 @@`
`4`	`4`
`5`	`5`	`class SUIDBlacklist < Inspec.resource(1)`
`6`	`6`	`name 'suid_blacklist'`
`7`		`- desc 'The suid_blacklist resoruce returns the default suid blacklist'`
	`7`	`+ desc 'The suid_blacklist resource returns the default suid blacklist'`
`8`	`8`
`9`	`9`	`def default`
`10`	`10`	`[`