-
https://microsoft.github.io/PSRule/v2/about/
Integrate this into the current Action that builds the container to scan the code as a first step.
Using this action: https://github.com/marketplace/…
-
PSRule can validate objects with custom PowerShell, YAML or JSON rules.
PSRule for Azure should be able to validate resources based on Azure Policies.
Migrated from Microsoft/PSRule#43
-
### Check for previous/existing GitHub issues/module proposals
- [X] I have checked for previous/existing GitHub issues/module proposals.
### Check this module doesn't already exist in the modul…
-
### Existing rule
AZR-000284
### Description of the issue
When creating SQL server `AZR-000284` and `AZR-000316` are raised for username and password, even though they are passed as `Secure` in bic…
-
PSRule for CAF includes a number of configuration options which include the [defaults](https://github.com/microsoft/PSRule.Rules.CAF/blob/main/docs/baselines/en/CAF.Strict.md).
Currently no documen…
-
### Description
The modules we provide in CARML provide quite a lot of functionlity - including security features such as private endpoint support and 'secure' default values like TLS1.2.
In the p…
-
In Azure Policy, we can have field expressions like `field('type')`. We should be able to expand these expressions when emitting JSON rules.
Related to #181
-
There is a set of best practices that we as Azure are recommending to customers. For example, using the managed identity for secretless auth. It would be great if we could allow customers to opt into …
-
### Description
Whenever we mention that a particular parameter value should be set/enabled "for security reasons" we should probably mention in the description which rules we are following or whic…
-
### Describe the bug
Here's the sample ARM template
```
{
"$schema": "https://schema.management.azure.com/schemas/2019-04-01/deploymentTemplate.json#",
"contentVersion": "1.0.0.0",
…