## Objective Expand the network security rule library beyond the starter 10 rules. ## Rules to add - [ ] AZ-NET-003: NSG allows unrestricted inbound on port 443 - [ ] AZ-NET-004: NSG with no rules configured (empty ruleset) - [ ] AZ-NET-005: Virtual network with no DDoS protection enabled - [ ] AZ-NET-006: Public IP address unassociated with any resource - [ ] AZ-NET-007: Application Gateway without WAF enabled - [ ] AZ-NET-008: Load balancer with no backend pool configured - [ ] AZ-NET-009: VPN gateway using outdated IKE version - [ ] AZ-NET-010: Subnet with no network security group attached ## Requirements - Follow the rule template in `CONTRIBUTING.md` exactly - Each rule must include a matching playbook in `playbooks/cli/` - Each rule must have CIS, NIST, ISO 27001 framework mappings ## Branch `feat/network-rules-expansion` ## Depends on Issue #1 must be merged to `dev` first
Objective
Expand the network security rule library beyond the starter 10 rules.
Rules to add
Requirements
CONTRIBUTING.mdexactlyplaybooks/cli/Branch
feat/network-rules-expansionDepends on
Issue #1 must be merged to
devfirst