Add initial deployment configuration files for Azure web app #23
1 configuration not found
Warning: Code scanning may not have found all the alerts introduced by this pull request, because 1 configuration present on refs/heads/main was not found:
Actions workflow (MSDO-Microsoft-Security-DevOps.yml)
- ❓
.github/workflows/MSDO-Microsoft-Security-DevOps.yml:MSDO
New alerts in code changed by this pull request
- 181 errors
- 60 notes
See annotations below for details.
Annotations
Check notice on line 29 in infra/resources.bicep
Code scanning / checkov
Ensure ACR admin account is disabled Note
Check failure on line 29 in infra/resources.bicep
Code scanning / checkov
Enable vulnerability scanning for container images. Error
Check failure on line 29 in infra/resources.bicep
Code scanning / checkov
Ensure container image quarantine, scan, and mark images verified Error
Check notice on line 29 in infra/resources.bicep
Code scanning / checkov
Ensure ACR set to disable public networking Note
Check failure on line 42 in infra/resources.bicep
Code scanning / checkov
Ensure the App Service Plan is zone redundant Error
Check failure on line 82 in infra/resources.bicep
Code scanning / checkov
Ensure the web app has 'Client Certificates (Incoming client certificates)' set Error
Check failure on line 82 in infra/resources.bicep
Code scanning / checkov
Ensure FTP deployments are disabled Error
Check failure on line 82 in infra/resources.bicep
Code scanning / checkov
Ensure that 'HTTP Version' is the latest if used to run the web app Error
Check failure on line 82 in infra/resources.bicep
Code scanning / checkov
Ensure web app redirects all HTTP traffic to HTTPS in Azure App Service Error
Check notice on line 82 in infra/resources.bicep
Code scanning / checkov
Ensure App Service has a minimum number of instances for failover Note
Check failure on line 82 in infra/resources.bicep
Code scanning / checkov
Ensure web app is using the latest version of TLS encryption Error
Check failure on line 82 in infra/resources.bicep
Code scanning / checkov
Ensure that Azure Web App public network access is disabled Error
Check failure on line 82 in infra/resources.bicep
Code scanning / checkov
Ensure that App Service configures health check Error
Check notice on line 82 in infra/resources.bicep
Code scanning / checkov
Ensure web app redirects all HTTP traffic to HTTPS in Azure App Service Slot Note
Check failure on line 82 in infra/resources.bicep
Code scanning / checkov
Ensure that 'HTTP Version' is the latest, if used to run the Function app Error
Check failure on line 82 in infra/resources.bicep
Code scanning / checkov
Ensure that Function apps is only accessible over HTTPS Error
Check notice on line 2 in samples/Dockerfile
Code scanning / checkov
Ensure that HEALTHCHECK instructions have been added to container images Note
Check notice on line 2 in samples/Dockerfile
Code scanning / checkov
Ensure that a user for the container has been created Note
Check failure on line 19 in samples/insecure_arm.json
Code scanning / checkov
Ensure the App Service Plan is zone redundant Error
Check failure on line 32 in samples/insecure_arm.json
Code scanning / checkov
Ensure the web app has 'Client Certificates (Incoming client certificates)' set Error
Check failure on line 32 in samples/insecure_arm.json
Code scanning / checkov
Ensure FTP deployments are disabled Error
Check failure on line 32 in samples/insecure_arm.json
Code scanning / checkov
Ensure that 'HTTP Version' is the latest if used to run the web app Error
Check failure on line 32 in samples/insecure_arm.json
Code scanning / checkov
Ensure web app redirects all HTTP traffic to HTTPS in Azure App Service Error
Check failure on line 32 in samples/insecure_arm.json
Code scanning / checkov
Ensure that Register with Azure Active Directory is enabled on App Service Error
Check notice on line 32 in samples/insecure_arm.json
Code scanning / checkov
Ensure that Managed identity provider is enabled for web apps Note