Closed arnaud-tincelin closed 16 hours ago
Describe the issue
Language: Bicep Check ID: CKV_AZURE_78
Examples Extract of my code
resource api 'Microsoft.Web/sites@2022-09-01' = { name: name location: location kind: 'api' identity: { type: 'SystemAssigned' } properties: { serverFarmId: serverFarmId clientAffinityEnabled: false clientCertEnabled: false httpsOnly: true siteConfig: { ftpsState: 'Disabled' ... } }
I would expect no issue on the FTP feature as it is set to Disabled but I am having
Disabled
Tool checkov Rule ID CKV_AZURE_78 Description Ensure FTP deployments are disabled Resource: Microsoft.Web/sites.api
Version (please complete the following information):
We are using github action bridgecrewio/checkov-action@v12, so I expect it to use the latest
bridgecrewio/checkov-action@v12
Additional context
Looking at https://github.com/bridgecrewio/checkov/blob/main/checkov/arm/checks/resource/AppServiceFTPSState.py,
I am guessing this line
def get_inspected_key(self) -> str: return "siteConfig/ftpsState"
should be
def get_inspected_key(self) -> str: return "properties/siteConfig/ftpsState"
Hi @arnaud-tincelin , thank you for reaching out. Seems like an easy fix, would you like to contribute a fix? 🙂
Closing, @arnaud-tincelin thank you for the contribution!
Describe the issue
Language: Bicep Check ID: CKV_AZURE_78
Examples Extract of my code
I would expect no issue on the FTP feature as it is set to
Disabled
but I am havingVersion (please complete the following information):
We are using github action
bridgecrewio/checkov-action@v12
, so I expect it to use the latestAdditional context
Looking at https://github.com/bridgecrewio/checkov/blob/main/checkov/arm/checks/resource/AppServiceFTPSState.py,
I am guessing this line
should be