## Chef InSpec 4.29 Chef InSpec has been updated from 4.28 to 4.29.3. ### New Features - The JSON metadata pass through configuration has been moved from the Automate reporter to the JSON Reporter. ([#5430](https://github.com/inspec/inspec/pull/5430)) ### Bug Fixes - The apt resource now correctly fetches all package repositories using the `-name` flag in an environment where ZSH is the user's default shell. ([#5437](https://github.com/inspec/inspec/pull/5437)) - Updates how InSpec profiles are created with GCP or AWS providers so they use `inputs` instead of `attributes`. ([#5435](https://github.com/inspec/inspec/pull/5435)) ## Resource Improvements ### service and chef_client_launchd The `service` and `chef_client_launchd` resources on macOS now use the full path to `launchctl` to avoid potential failures. Thanks [@krackajak](https://github.com/krackajak)! ### file Verifiers in the `file` resource are only run if the content actually changes. This can significantly speed execution of Chef Infra Client when no actual changes occur. Thanks [@joshuamiller01](https://github.com/joshuamiller01)! ### mount The mount resource now properly handles NFS mounts with a root of `/`. Thanks for reporting this [@eheydrick](https://github.com/eheydrick) and thanks for the fix [@ramereth](https://github.com/ramereth)! ## powershell_script and dsc_script Our embedded PowerShell libraries have been updated for improved execution of PowerShell and DSC code on Windows systems. ## Improved System Detection Ohai has been updated to better detect system configuration details: - Ohai now detects Chef Infra Clients running in the Effortless pattern at `node['chef_packages']['chef']['chef_effortless']`. - Windows packages installed for the current user are now detected in addition to system wide package installations. Thanks [@jaymzh](https://github.com/jaymzh)! - `Sangoma Linux` is now detected as part of the `rhel` platform family. Thanks [@hron84](https://github.com/hron84)! - Docker is now properly detected even if it's running on a virtualized system. Thanks [@jaymzh](https://github.com/jaymzh)! - Alibaba Cloud Linux is now detected as platform `alibabalinux` and platform family `rhel`. ## Security Upgraded OpenSSL on macOS hosts to 1.1.1k, which resolves the following CVEs: - [CVE-2021-3450](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3450) - [CVE-2021-3449](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-3449)