Add Azure ResourceGroup enrichment to CloudMetadata

[slashben]

Summary

• Add enrichment of Azure ResourceGroup to CloudMetadata from Kubernetes node spec and IMDS
• Supports both Kubernetes deployments (via node providerID) and host deployments (via IMDS)
• Updated armoapi-go dependency to v0.0.670
• Added comprehensive unit tests

Changes

• Add enrichCloudMetadataForAzure function to parse ResourceGroup from node spec.providerID
• Add parseAzureResourceGroup helper to extract ResourceGroup from Azure providerID format: azure:///subscriptions/{sub}/resourceGroups/{rg}/providers/...
• Update fetchAzureMetadata to include ResourceGroup from Azure IMDS resourceGroupName endpoint
• Call enrichment function in GetCloudMetadata for Kubernetes nodes
• Import corev1 for proper node type handling
• Update armoapi-go to v0.0.670
• Add unit tests for parseAzureResourceGroup and enrichCloudMetadataForAzure with 14 test cases

Test Coverage

• ✅ Tests for various providerID formats (valid, malformed, edge cases)
• ✅ Tests for case-insensitive matching
• ✅ Tests for guard conditions (nil checks, provider checks, already-set ResourceGroup)
• ✅ All tests passing

Dependencies

• Depends on armoapi-go v0.0.670 (already released with ResourceGroup field)

Test plan

• Unit tests added and passing (14 test cases)
• Verify ResourceGroup is populated for Azure Kubernetes nodes
• Verify ResourceGroup is populated from IMDS for host deployments
• Verify RuntimeAlerts include resource_group in cloudMetadata

[coderabbitai]

📝 Walkthrough

Walkthrough

This PR bumps the armosec/armoapi-go dependency and adds Azure-specific metadata enrichment to the cloud metadata module. It introduces functions to extract ResourceGroup from Azure provider IDs and enriches CloudMetadata accordingly during node processing.

Changes

Cohort / File(s)	Summary
Dependency Update go.mod	Bumps armosec/armoapi-go from v0.0.667 to v0.0.670
Azure Metadata Enrichment pkg/cloudmetadata/metadata.go	Adds enrichCloudMetadataForAzure() to extract and populate ResourceGroup from Azure node provider IDs; adds parseAzureResourceGroup() helper for parsing; integrates enrichment into GetCloudMetadata() flow; updates fetchAzureMetadata() to include ResourceGroup field; adds corev1 import

Estimated code review effort

🎯 2 (Simple) | ⏱️ ~12 minutes

Possibly related PRs

• refactor: update cloud metadata types to use armotypes package #689: Modifies pkg/cloudmetadata/metadata.go and armotypes.CloudMetadata usage, including fetchAzureMetadata changes that align with the ResourceGroup field additions in this PR.

Suggested labels

release

Suggested reviewers

• amirmalka

Poem

🐰 A rabbit hops through Azure clouds so bright,
ResourceGroups now parsed with parsing might,
From providerID strings, we extract with care,
Metadata enriched, cloud details laid bare! ☁️✨

🚥 Pre-merge checks | ✅ 2 | ❌ 1

❌ Failed checks (1 warning)

Check name	Status	Explanation	Resolution
Docstring Coverage	⚠️ Warning	Docstring coverage is 50.00% which is insufficient. The required threshold is 80.00%.	Write docstrings for the functions missing them to satisfy the coverage threshold.

✅ Passed checks (2 passed)

Check name	Status	Explanation
Description Check	✅ Passed	Check skipped - CodeRabbit’s high-level summary is enabled.
Title check	✅ Passed	The title clearly and directly summarizes the main change: adding Azure ResourceGroup enrichment to CloudMetadata, which is the primary objective of the PR.

_{✏️ Tip: You can configure your own custom pre-merge checks in the settings.}

✨ Finishing touches

• 📝 Generate docstrings

---

_{Comment @coderabbitai help to get the list of available commands and usage tips.}