checkov icon indicating copy to clipboard operation
checkov copied to clipboard

Published 20 hours ago verified publisher icon bridgecrewio

CKV2_AZURE_10 Error for Azure Linux Virtual Machines

Open rajuvadarevu opened this issue 3 years ago • 6 comments

Creating Azure Linux Virtual Machine using Terraform. Passed main.tf file to checkov and then it gives: CKV2_AZURE_10: "Ensure that Microsoft Antimalware is configured to automatically updates for Virtual Machines"

But when I checked Azure Documentation here: https://docs.microsoft.com/en-us/azure/virtual-machines/extensions/iaas-antimalware-windows It says, "The Microsoft Antimalware solution is supported on Windows Server 2008 R2, Windows Server 2012, and Windows Server 2012 R2 operating system families. It is not supported on the Windows Server 2008 operating system, and also is not supported in Linux."

Is Operating System check not placed in checkov for this CKV2_AZURE_10 error ?

rajuvadarevu avatar Aug 30 '21 11:08 rajuvadarevu

@schosterbarak Hey, I would like to work on this issue. I found this file (terraform/checks/graph_checks/azure/AzureAntimalwareIsConfiguredWithAutoUpdatesForVMs.yaml) with the information mentioned in the issue description, am I looking at the right place?

Secondly, I need to include a condition to exclude Linux, right?

Thanks.

kyteinsky avatar Oct 03 '21 23:10 kyteinsky

Hi @kyteinsky , you are spot on. We would appreciate a contribution here!

nimrodkor avatar Dec 27 '21 21:12 nimrodkor

Hey @nimrodkor,

I am very sorry. I am completely lost where I found this issue and how to correct it. Unfortunately, even looking at the docs and the comments does not bring things back.

I hope you understand.

Cheers.

kyteinsky avatar Dec 29 '21 09:12 kyteinsky

Thanks for contributing to Checkov! We've automatically marked this issue as stale to keep our issues list tidy, because it has not had any activity for 6 months. It will be closed in 14 days if no further activity occurs. Commenting on this issue will remove the stale tag. If you want to talk through the issue or help us understand the priority and context, feel free to add a comment or join us in the Checkov slack channel at https://slack.bridgecrew.io Thanks!

stale[bot] avatar Jun 27 '22 19:06 stale[bot]

Closing issue due to inactivity. If you feel this is in error, please re-open, or reach out to the community via slack: https://slack.bridgecrew.io Thanks!

stale[bot] avatar Jul 11 '22 23:07 stale[bot]

Hi, CKV2_AZURE_10: "Ensure that Microsoft Antimalware is configured to automatically updates for Virtual Machines" still failed for Linux Virtual Machine. Version 2.1.87

julienLemarie avatar Aug 03 '22 07:08 julienLemarie

Thanks for contributing to Checkov! We've automatically marked this issue as stale to keep our issues list tidy, because it has not had any activity for 6 months. It will be closed in 14 days if no further activity occurs. Commenting on this issue will remove the stale tag. If you want to talk through the issue or help us understand the priority and context, feel free to add a comment or join us in the Checkov slack channel at https://slack.bridgecrew.io Thanks!

stale[bot] avatar Jun 13 '23 02:06 stale[bot]

Closing issue due to inactivity. If you feel this is in error, please re-open, or reach out to the community via slack: https://slack.bridgecrew.io Thanks!

stale[bot] avatar Jun 28 '23 06:06 stale[bot]