InSpec by Chef 3.0 accelerates compliance automation for DevSecOps>
Help Net Security
InSpec 3.0 increases the velocity of compliance audits and remediation, while reducing risk for cross-functional security, development and operations (DevSecOps) teams and their organizations. InSpec is an open-source language for describing security and compliance rules that can be shared between software engineers, operations and security engineers. InSpec is designed to be used at all stages of the software delivery process, from developersâ workstations to production, allowing companies to achieve compliance with no performance impact or side-effects. InSpec is designed to be easy-to-use, even by users with no background in programming. New features in InSpec 3.0 designed to enhance the developer experience include: New plugin architecture Improved exception management Workflow-enhancing APIs Compliance for Terraform Compliance for Google Cloud Platform (GCP) Improved metadata interface on controls
Link: https://www.helpnetsecurity.com/2018/10/18/chef-inspec-by-chef-3-0/