checkov icon indicating copy to clipboard operation
checkov copied to clipboard
verified publisher icon bridgecrewio

feat(arm): PostgreSQLServerPublicAccessDisabled

Open shoshiGit opened this issue 1 year ago • 0 comments

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

Description

We converted the check PostgreSQLServerPublicAccessDisabled from TERRAFORM language to the ARM language so that it also works on resources that are defined in the ARM language.

Fixes # (issue)

New/Edited policies (Delete if not relevant)

Description

Ensure that PostgreSQL server disables public network access.

Fix

The issue can be resolved by setting the public_network_access_enabled property to false for the Azure PostgreSQL server resource in the ARM template, ensuring that public network access is disabled.

Checklist:

  • [x] My code follows the style guidelines of this project
  • [x] I have performed a self-review of my own code
  • [ ] I have commented my code, particularly in hard-to-understand areas
  • [ ] I have made corresponding changes to the documentation
  • [x] I have added tests that prove my feature, policy, or fix is effective and works
  • [x] New and existing tests pass locally with my changes
  • [ ] Any dependent changes have been merged and published in downstream modules

shoshiGit avatar May 20 '24 11:05 shoshiGit