Check for outer scope deployments using secure parameters #1475

BernieWhite · 2022-06-13T04:24:42Z

Rule request

Suggested rule change

Deployments using an outer scope should not use any secureObject or secureString parameters.

Applies to the following

The rule applies to the following:

Resource type: Microsoft.Resources/deployments

Additional context

TTK test

The text was updated successfully, but these errors were encountered:

ms-sambell · 2022-09-21T12:09:47Z

Hey @BernieWhite,

Is this rule similar to : https://github.com/Azure/PSRule.Rules.Azure/blob/main/src/PSRule.Rules.Azure/rules/Azure.Deployment.Rule.ps1#L16

But checking for a rendered secureString|secureObject parameters?

BernieWhite added rule: deployment Rule for Azure Resource Manager templates help wanted Extra attention is needed integration: defender-for-devops New feature or request for ARM Template Best Practice Analyzer labels Jun 13, 2022

ms-sambell self-assigned this Jun 13, 2022

ms-sambell mentioned this issue Oct 3, 2022

New rule/deployment outer scope evaluation #1743

Merged

11 tasks

BernieWhite closed this as completed in #1743 Nov 14, 2022

BernieWhite added this to the v1.22.0 milestone Nov 15, 2022

BernieWhite mentioned this issue Nov 20, 2022

Pre-release v1.22.0-B0062 #1880

Merged

4 tasks

BernieWhite mentioned this issue Nov 28, 2022

Release v1.22.0 #1913

Merged

4 tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Check for outer scope deployments using secure parameters #1475

Check for outer scope deployments using secure parameters #1475

BernieWhite commented Jun 13, 2022

ms-sambell commented Sep 21, 2022

Check for outer scope deployments using secure parameters #1475

Check for outer scope deployments using secure parameters #1475

Comments

BernieWhite commented Jun 13, 2022

Rule request

Suggested rule change

Applies to the following

Additional context

ms-sambell commented Sep 21, 2022