Category:
Chef InSpec
Chef for Compliance Announcement: Waivers Support
Today Chef announces compliance waiver support within Chef InSpec and Chef Automate. Using Chef for compliance provides a holistic solution for enterprises to achieve continuous compliance. Companies audit their various endpoints for compliance against CIS or DISA standards using Chef InSpec, while viewing the aggregate compliance state of their fleet in Chef Automate.
Read moreAn Award-Winning Way to Start 2020
By Matt Lyman
Chef Rings in 2020 with Multiple Industry Award Wins for Chef EAS and Chef InSpec Chef is kicking off 2020 on a high note announcing five new industry awards signifying our ongoing recognition from the industry as the DevOps leader.
Read morePreparing for April End of Support Dates
By Nick Rycar
This coming April will mark one year since the introduction of the Chef Enterprise Automation Stack. As part of this release, we announced that all of our products are now open source under the Apache 2 license and that Chef’s tested, enterprise-ready software distributions (binaries) are subject commercial license terms going forward.
Read moreChef InSpec recognized for Compliance Automation Tools in Gartner Report
We believe Gartner provides very useful guidance for organizations struggling with balancing the need to deliver products and services to market faster while having to deal with regulations and compliance requirements that may overburden their teams.
Read moreChefConf 2020 Registration is Now Open!
By Mandi Walls
Registration for ChefConf 2020 is now open. Join us in Seattle or London (or both) this June!
Read moreWhat to Talk About at ChefConf 2020 – Chef InSpec
By Mandi Walls
The ChefConf 2020 CFP is well underway. Have you put your topic in yet? If you’re still thinking about what talk you’d like to present, maybe you’re considering a talk about Chef InSpec? InSpec is a powerful tool for investigating and reporting on the security of your various infrastructure components, including resources in the cloud.
Read more5 Things You Can Do with Chef InSpec Input
Chef InSpec defines security and compliance rules as executable code for testing and auditing applications and infrastructure. Chef InSpec compares the actual state of a system with the desired state that is expressed in easy-to-read and easy-to-write code.
Read moreWhat’s in an endpoint? Managing laptops with Chef
For over 11 years Chef customers and community have trusted us to manage their infrastructure and servers, so it should be no surprise that you can also manage desktops and laptops just as effectively by using Chef Effortless Infrastructure Suite.
Read moreInSpec and the Too-Long(?) Life of Security Policies
By Mandi Walls
This blog post by Chris Swan, Policy Debt, was included in the September 8, 2019 edition of DevOps Weekly (subscribe here if you haven’t already). Many of the points Chris raises are likely familiar to folks who have been working in operations, systems engineering, or DevOps for any length of time.
Read moreProtect Yourself From the RubyGems Backdoor by InSpec’ing Your Fleet
By Galen Emery
Chef has invested a lot with the Enterprise Automation Stack in security. With Chef InSpec you can easily scan your systems for potential vulnerabilities and then leverage Chef Infra to run remediation across your entire fleet. This is important because last week’s RubyGems vulnerability likely affected other software you have deployed that uses Ruby.
Read more