Question: security best practices AVM

Azure / Azure-Verified-Modules

Azure Verified Modules (AVM) is an initiative to consolidate and set the standards for what a good Infrastructure-as-Code module looks like. Modules will then align to these standards, across languages (Bicep, Terraform etc.) and will then be classified as AVMs and available from their respective language specific registries.

https://aka.ms/AVM

MIT License

277 stars 61 forks source link

Question: security best practices AVM #1138

Open roysha1 opened 6 days ago

roysha1 commented 6 days ago

Check for previous/existing GitHub issues

[X] I have checked for previous/existing GitHub issues

Description

Great initative!

With Microsoft SFI, Are there any plans to provide best practices from security aspects?

Do avm plan to have flag of secured or hardened resources out of the box?

microsoft-github-policy-service[bot] commented 6 days ago

[!IMPORTANT] The "Needs: Triage :mag:" label must be removed once the triage process is complete!

[!TIP] For additional guidance on how to triage this issue/PR, see the AVM Issue Triage documentation.