checkov icon indicating copy to clipboard operation
checkov copied to clipboard
verified publisher icon bridgecrewio

feat(arm): EventHubNamespaceMinTLS12

Open shoshiGit opened this issue 1 year ago • 1 comments

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

Description

We converted the check 'EventHubNamespaceMinTLS12' from TERRAFORM language to the ARM language so that it also works on resources that are defined in the ARM language.

Fixes # (issue)

Description

Ensure Event Hub Namespace uses at least TLS 1.2.

Fix

To fix the issue in code, update the Event Hub Namespace configuration to enforce a minimum of TLS 1.2. This can be done by modifying the ARM template to include the appropriate TLS settings for the Event Hub Namespace.

Checklist:

  • [x] My code follows the style guidelines of this project
  • [x] I have performed a self-review of my own code
  • [ ] I have commented my code, particularly in hard-to-understand areas
  • [ ] I have made corresponding changes to the documentation
  • [x] I have added tests that prove my feature, policy, or fix is effective and works
  • [x] New and existing tests pass locally with my changes
  • [ ] Any dependent changes have been merged and published in downstream modules

shoshiGit avatar Jun 24 '24 09:06 shoshiGit

Hi @shoshiGit , Thanks for your contribution, please add test if the TLS value is 1.3 Hint: it should pass

matansha avatar Jun 26 '24 08:06 matansha