Validating Images With Goss

Understand how to validate images with Goss using spec files and Packer provisioners.

We'll cover the following

Creating a spec file
Adding a Packer provisioner

Goss is a tool for checking server configurations using a spec file written in YAML. This way, we can test that the server is working as expected. This can be from testing access to the server over SSH using expected keys to validating that various processes are running.

Not only can Goss test our server for compliance, but it can be integrated with Packer. That way, we can test that our server is running as expected during the provisioning step and before deployment.

Let's have a look at making a Goss spec file.

Creating a spec file

A spec file is a set of instructions that tells Goss what to test for.

There are a couple of ways to make a spec file for Goss. The spec file is used by Goss to understand what it needs to test.

While we could write it by hand, the most efficient way is to use one of two Goss commands:

goss add
goss autoadd

The most efficient way to use Goss is to launch a machine with our custom AMI, log in using the ubuntu user, and use autoadd to generate the YAML file.

Once logged onto our AMI instance, let's run the following:

Get hands-on with 1200+ tech skills courses.

Introduction to the Course

Go Language Basics

Go Language Essentials

Filesystem Interactions

Using Common Data Formats

Interacting with Remote Data Sources

Writing Command-Line Tooling

Automating Command-Line Tasks

Observability with OpenTelemetry

Automating Workflows with GitHub Actions

Using ChatOps to Increase Efficiency

Creating Immutable Infrastructure Using Packer

Infrastructure as Code with Terraform

Deploying and Building Applications in Kubernetes

Programming the Cloud

Designing for Chaos

Appendix

Conclusion

Validating Images With Goss

Creating a spec file