Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Check for custom script extension usage that might expose a secret #1478

Closed
BernieWhite opened this issue Jun 13, 2022 · 0 comments · Fixed by #1684
Closed

Check for custom script extension usage that might expose a secret #1478

BernieWhite opened this issue Jun 13, 2022 · 0 comments · Fixed by #1684
Assignees
@ms-sambell
Labels
help wanted Extra attention is needed integration: defender-for-devops New feature or request for ARM Template Best Practice Analyzer rule: deployment Rule for Azure Resource Manager templates
Milestone
v1.22.0

Comments

@BernieWhite
Copy link
Collaborator

Rule request

Suggested rule change

Check for custom script cases that might expose a secret.

Ensures that all commandsToExecute are within protectedSettings if the command contains a secure parameter or list function.

Applies to the following

The rule applies to the following:

  • Resource type: Microsoft.Resources/deployments

Additional context

TTK test
@BernieWhite BernieWhite added rule: deployment Rule for Azure Resource Manager templates integration: defender-for-devops New feature or request for ARM Template Best Practice Analyzer help wanted Extra attention is needed labels Jun 13, 2022
@ms-sambell ms-sambell self-assigned this Jun 13, 2022
@BernieWhite BernieWhite linked a pull request Sep 21, 2022 that will close this issue
1478/check custom script extension usage #1684
Merged
11 tasks
@ms-sambell ms-sambell mentioned this issue Sep 21, 2022
Merged
11 tasks
@BernieWhite BernieWhite added this to the v1.21.0 milestone Oct 8, 2022
@BernieWhite BernieWhite modified the milestones: v1.21.0, v1.22.0 Oct 26, 2022
@BernieWhite BernieWhite mentioned this issue Nov 20, 2022
Merged
4 tasks
@BernieWhite BernieWhite mentioned this issue Nov 28, 2022
Merged
4 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@ms-sambell ms-sambell

Labels
help wanted Extra attention is needed integration: defender-for-devops New feature or request for ARM Template Best Practice Analyzer rule: deployment Rule for Azure Resource Manager templates
Projects
None yet
Milestone
v1.22.0
Development

Successfully merging a pull request may close this issue.

1478/check custom script extension usage ms-sambell/PSRule.Rules.Azure
2 participants
@BernieWhite @ms-sambell