PSRule.Rules.Azure
PSRule.Rules.Azure copied to clipboard
Azure
Rules to validate Azure resources and infrastructure as code (IaC) using PSRule.
Bumps [mkdocs-material](https://github.com/squidfunk/mkdocs-material) from 9.5.41 to 9.5.42. Release notes Sourced from mkdocs-material's releases. mkdocs-material-9.5.42 Fixed #7625: Invalid encoding of boolean attributes in privacy plugin Fixed #7624: Crash when disabling privacy plugin...
![dependabot[bot] avatar](https://avatars.githubusercontent.com/in/29110?v=4 "dependabot[bot] avatar"){kind=avatar}
### Existing rule Azure.NSG.LateralTraversal ### Description of the issue Creating an NSG using Azure Verified Modules (AVM) and specifying the required config needed to pass this rule (from the documentation)...
### Existing rule Azure.ACR.AnonymousAccess ### Suggested rule The feature is out of preview and can be promoted to GA. ### Pillar Security ### Additional context - https://learn.microsoft.com/en-gb/azure/container-registry/anonymous-pull-access
### Existing rule Azure.DefenderCloud.Provisioning ### Suggested rule This rule no longer is applicable because it's specific to Log Analytics agent auto provisioning. Flag for removal in v2. ### Pillar Security...
### Existing rule Azure.DefenderCloud.Contact ### Description of the issue The `phone` property is no longer relevant. ### Error messages _No response_ ### Reproduction n/a ### Version of PSRule 2.9.0 ###...
### Existing rule _No response_ ### Suggested rule Storage accounts allow disabling local accounts which disables both access keys and SAS tokens. This is configured by setting the `allowSharedKeyAccess` property...
### Existing rule _No response_ ### Suggested rule Disable network access from public sources. Instead use private endpoints which provide private access from a VNET. ```bicep resource adx 'Microsoft.Kusto/clusters@2023-08-15' =...
### Existing rule _No response_ ### Suggested rule Redis Cache supports disabling access key-based access by setting the `disableAccessKeyAuthentication` propety to `true`. e.g. ```json { "name": "sfvgsfdfsfsd", "type": "Microsoft.Cache/redis", "apiVersion":...
### Existing rule _No response_ ### Suggested rule New VM SKU helps with better hardware, performance, security and reliability in most cases. Having PSRule checking for VMs that have new...
### Existing rule _No response_ ### Suggested rule Currently there's no rule to check for Cache for Redis Availability Zone protection. It would be good to align the rules with...