Add Terraform configurations for Azure resources and update CI/CD workflows #36
49 new alerts including 13 errors
New alerts in code changed by this pull request
- 13 errors
- 24 warnings
- 12 notes
See annotations below for details.
Annotations
Check failure on line 25 in terraform/azure/aks.tf
Code scanning / defsec
Ensure AKS cluster has Network Policy configured Error
Check failure on line 25 in terraform/azure/aks.tf
Code scanning / defsec
Ensure AKS has an API Server Authorized IP Ranges enabled Error
Check warning on line 16 in terraform/azure/aks.tf
Code scanning / defsec
Ensure AKS logging to Azure Monitoring is Configured Warning
Check failure on line 23 in terraform/azure/aks.tf
Code scanning / defsec
Ensure RBAC is enabled on AKS clusters Error
Check notice on line 21 in terraform/azure/app_service.tf
Code scanning / defsec
Web App has registration with AD enabled Note
Check warning on line 21 in terraform/azure/app_service.tf
Code scanning / defsec
App Service authentication is activated Warning
Check notice on line 21 in terraform/azure/app_service.tf
Code scanning / defsec
Web App accepts incoming client certificate Note
Check notice on line 20 in terraform/azure/app_service.tf
Code scanning / defsec
Web App uses the latest HTTP version Note
Check failure on line 19 in terraform/azure/app_service.tf
Code scanning / defsec
Web App uses latest TLS version Error
Check notice on line 33 in terraform/azure/app_service.tf
Code scanning / defsec
Web App has registration with AD enabled Note
Check notice on line 33 in terraform/azure/app_service.tf
Code scanning / defsec
Web App uses the latest HTTP version Note
Check notice on line 33 in terraform/azure/app_service.tf
Code scanning / defsec
Web App accepts incoming client certificate Note
Check warning on line 31 in terraform/azure/app_service.tf
Code scanning / defsec
App Service authentication is activated Warning
Check failure on line 17 in terraform/azure/instance.tf
Code scanning / defsec
Password authentication should be disabled on Azure virtual machines Error
Check warning on line 22 in terraform/azure/key_vault.tf
Code scanning / defsec
Key vault should have purge protection enabled Warning
Check failure on line 22 in terraform/azure/key_vault.tf
Code scanning / defsec
Key vault should have the network acl block specified Error
Check warning on line 37 in terraform/azure/key_vault.tf
Code scanning / defsec
Ensure that the expiration date is set on all keys Warning
Check notice on line 43 in terraform/azure/key_vault.tf
Code scanning / defsec
Key vault Secret should have a content type set Note
Check notice on line 43 in terraform/azure/key_vault.tf
Code scanning / defsec
Key Vault Secret should have an expiration date set Note
Check warning on line 10 in terraform/azure/logging.tf
Code scanning / defsec
Ensure log profile captures all activities Warning
Check warning on line 10 in terraform/azure/logging.tf
Code scanning / defsec
Ensure log profile captures all activities Warning
Check warning on line 10 in terraform/azure/logging.tf
Code scanning / defsec
Ensure activitys are captured for all locations Warning
Check warning on line 8 in terraform/azure/logging.tf
Code scanning / defsec
Ensure the activity retention log is set to at least a year Warning
Check failure on line 50 in terraform/azure/networking.tf
Code scanning / defsec
An inbound network security rule allows traffic from /0. Error
Check failure on line 50 in terraform/azure/networking.tf
Code scanning / defsec
SSH access should not be accessible from the Internet, should be blocked on port 22 Error