Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
* PLA-17940 updating constraints and fixing s3_enable_access_logging to… (#3) * PLA-17940 updating constraints and fixing s3_enable_access_logging to not remediate the logging target bucket * PLA-17940 fixing copyright info * Updated readme to have link for reporting issues (#4) Co-authored-by: svikramjeet <svikramjeet@vmware.com> * S3 access logs permissions (#6) * Update minimum permissions for the job * Add more logs when permission is missing Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * change the way cloudAccountId is parsed from Job Paramaters (#9) Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * PLA-16779: Add remediation job for azure security group port 22 (#10) * PLA-16779: Add remediation job for azure security group port 22 * add test dependencies * update README.md * add deployment info to the README * add rule information Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * Add remediation job for closing port 22 for VM (#11) * PLA-18743: Add remediation job for closing port 22 for VM * add tests for azure_vm_close_port_22 to tox * add deployment details Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * Add remediation jobs for storage and RDP violations (#12) * add remediation job for closing RDP access * Add remediation job for remove public access for blob * Add remediation job to allow only https traffic to storage account * update READMEs to fix broken links Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * fix the parameters passed for remediation (#13) Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * add check for existing permissions before adding new (#15) Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * Fix ports range for network security groups (#19) * handle the case when the security rule port is a range * Add minimum permissions for each remediation jobs * add link to built in roles Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * update the remediation job payload (#21) Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * PLA-20459: Add rule information for the remediation job (#22) * update the remediation job payload (#21) Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * PLA-20459: Add rule information for the remediation job * add another rule remediated by the job Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * Master -> Dev Merge (#23) * Release/v1.0.0 (#7) * PLA-17940 updating constraints and fixing s3_enable_access_logging to… (#3) * PLA-17940 updating constraints and fixing s3_enable_access_logging to not remediate the logging target bucket * PLA-17940 fixing copyright info * Updated readme to have link for reporting issues (#4) Co-authored-by: svikramjeet <svikramjeet@vmware.com> * S3 access logs permissions (#6) * Update minimum permissions for the job * Add more logs when permission is missing Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> Co-authored-by: Paul Allen <pauldallen@gmail.com> Co-authored-by: svikramjeet <svikramjeet@vmware.com> Co-authored-by: Zuber <khan.zuber@gmail.com> Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * Release/v1.1.0 (#17) * PLA-17940 updating constraints and fixing s3_enable_access_logging to… (#3) * PLA-17940 updating constraints and fixing s3_enable_access_logging to not remediate the logging target bucket * PLA-17940 fixing copyright info * Updated readme to have link for reporting issues (#4) Co-authored-by: svikramjeet <svikramjeet@vmware.com> * S3 access logs permissions (#6) * Update minimum permissions for the job * Add more logs when permission is missing Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * change the way cloudAccountId is parsed from Job Paramaters (#9) Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * PLA-16779: Add remediation job for azure security group port 22 (#10) * PLA-16779: Add remediation job for azure security group port 22 * add test dependencies * update README.md * add deployment info to the README * add rule information Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * Add remediation job for closing port 22 for VM (#11) * PLA-18743: Add remediation job for closing port 22 for VM * add tests for azure_vm_close_port_22 to tox * add deployment details Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * Add remediation jobs for storage and RDP violations (#12) * add remediation job for closing RDP access * Add remediation job for remove public access for blob * Add remediation job to allow only https traffic to storage account * update READMEs to fix broken links Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * fix the parameters passed for remediation (#13) Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * add check for existing permissions before adding new (#15) Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * Fix ports range for network security groups (#19) (#20) * handle the case when the security rule port is a range * Add minimum permissions for each remediation jobs * add link to built in roles Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> Co-authored-by: Zuber <khan.zuber@gmail.com> Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> Co-authored-by: Paul Allen <pauldallen@gmail.com> Co-authored-by: svikramjeet <svikramjeet@vmware.com> Co-authored-by: Zuber <khan.zuber@gmail.com> Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> Co-authored-by: Paul Allen <pauldallen@gmail.com> Co-authored-by: svikramjeet <svikramjeet@vmware.com> Co-authored-by: Zuber <khan.zuber@gmail.com> Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * Revert "Master -> Dev Merge (#23)" (#24) This reverts commit a875459. * Azure security center enable ddos protection (#27) * Azure security center enable ddos protection remediation script * Removed .DS_Store file * Made changes in README.md * Addressed the review comments * Pre-commit changes added * Made changes in README.md * Added the unit test in tox.ini * fix requirements-dev.txt for tox run Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> Co-authored-by: Shrutika Kulkarni <shrutikakulkarni@RAJs-MacBook-Pro.local> * Azure Storage default network access deny remediation script (#30) * Azure Storage default network access deny remediation script * .DS_Store file removed * Fixed some logging messages * Added unit test in tox.ini * Changed requirements.txt * Fixed requirements-dev.txt * Pla 19713: remove unused logcall (#31) * remove unused logcall function Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * Add remediation job to enable ELB access logs (#29) * Add remediation job to enable ELB access logs Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> * PLA-21409: Azure SQL Server Threat Detection enable (#36) * PLA-21822 fixing whitespace (#37) * Pla 21822 fixing requirements whitespace (#38) * PLA-21822 fixing whitespace Co-authored-by: Paul Allen <pauldallen@gmail.com> Co-authored-by: svikramjeet <svikramjeet@vmware.com> Co-authored-by: Zuber <khan.zuber@gmail.com> Co-authored-by: Mohammad Zuber Khan <khanz@vmware.com> Co-authored-by: kshrutik <73834811+kshrutik@users.noreply.github.com> Co-authored-by: Shrutika Kulkarni <shrutikakulkarni@RAJs-MacBook-Pro.local>
- Loading branch information