search

turbot / steampipe-mod-azure-compliance

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, HIPAA HITRUST, NIST, and more across all of your Azure subscriptions using Powerpipe and Steampipe.
https://hub.powerpipe.io/mods/turbot/azure_compliance
Apache License 2.0
55 stars 14 forks source link

Missing implementation of CIS 3.14 #158

Closed KingBrewer closed 1 year ago

KingBrewer commented 1 year ago

Describe the bug CIS check 3.14 "Ensure Storage Logging is Enabled for Table Service for 'Read', 'Write', and 'Delete' Requests" is missing implementation, being attributed as a manual control: https://github.com/turbot/steampipe-mod-azure-compliance/blob/v0.24/cis_v200/section_3.sp#L219

Steampipe version (steampipe -v) v0.19.4

Plugin version (steampipe plugin list) steampipe-mod-azure-compliance@v0.24

+------------------------------------------------+---------+-------------+
| Installed Plugin                               | Version | Connections |
+------------------------------------------------+---------+-------------+
| hub.steampipe.io/plugins/turbot/azure@latest   | 0.41.0  | azure       |
| hub.steampipe.io/plugins/turbot/azuread@latest | 0.9.0   | azuread     |
+------------------------------------------------+---------+-------------+

To reproduce Run assessment of 3.14 control: steampipe check control.cis_v200_3_14

Expected behavior Azure Storage logging status should be evaluated for Table Service. Currently it is marked as manual, what is incorrect

rajlearner17 commented 1 year ago

Adding the referenced plugin issue for tracking