Prevent cloud misconfigurations and find vulnerabilities during build-time in infrastructure as code, container images and open source packages with Checkov by Bridgecrew.
Describe the issue
We are using Azure terraform, And we are trying to create a check for Azure SQL managed instance , when I looked at the code inside resources_types python file I don't see the Azure RM for SQL. MI mentioned out there so we tried to create a custom policy and that rule is not firing at all
My question is if that entry is not found in the resource type policy file and I use that in the resource type section as provided in the example. Does checkout automatically recognize it or this is a feature request or a bug which needs to be fixed in the code checkov modules?
Examples
metadata:
name: "CKV_AZURE_9999"
category: "Networking"
description: "Ensure Azure SQL Managed Instance private connection is set to false."
guidelines: "For certain configurations, ensuring the private connection is set to false is necessary. This policy helps in enforcing that."
severity: "HIGH"
definition:
cond_type: "attribute"
resource_types:
Describe the issue We are using Azure terraform, And we are trying to create a check for Azure SQL managed instance , when I looked at the code inside resources_types python file I don't see the Azure RM for SQL. MI mentioned out there so we tried to create a custom policy and that rule is not firing at all
My question is if that entry is not found in the resource type policy file and I use that in the resource type section as provided in the example. Does checkout automatically recognize it or this is a feature request or a bug which needs to be fixed in the code checkov modules?
Examples metadata: name: "CKV_AZURE_9999" category: "Networking" description: "Ensure Azure SQL Managed Instance private connection is set to false." guidelines: "For certain configurations, ensuring the private connection is set to false is necessary. This policy helps in enforcing that." severity: "HIGH" definition: cond_type: "attribute" resource_types:
Version (please complete the following information):
Additional context Add any other context about the problem here.