Anonymous pull access should not be enabled - Githubissues

Azure / PSRule.Rules.Azure

Rules to validate Azure resources and infrastructure as code (IaC) using PSRule.

https://azure.github.io/PSRule.Rules.Azure/

MIT License

377 stars 83 forks source link

Anonymous pull access should not be enabled #2422

Closed BernieWhite closed 10 months ago

BernieWhite commented 10 months ago

Existing rule

No response

Suggested rule

Create rule Azure.ACR.AnonymousAccess that checks if anonymous access is enabled.

If anonymous is enabled, the rule should fail.

By default, anonymous is not enabled but may be explicitly set to enabled by setting properties.anonymousPullEnabled to true.

Anonymous access can currently only be enabled on Standard and Premium tiers, and is a preview feature.

Pillar

Security

Additional context

BenjaminEngeset commented 10 months ago

I can contribute on this one.

BernieWhite commented 10 months ago

Thanks @BenjaminEngeset