CKV_AZURE_114
Ensure key vault secrets have content_type set
Codiga Static Analysis engine checks all terraform code and surface security and safety issues as well as enforcement of best practices. No matter what cloud you use (AWS, GCP, Azure), Codiga got you covered and flags potential problems at every push and pull request.
Ensure key vault secrets have content_type set
Ensure Create before destroy for API GATEWAY
Ensure Create before destroy for API deployments
Ensure that Cognitive Services enables customer-managed key for encryption
Ensure Code Pipeline Artifact store is using a KMS CMK
Ensure CloudTrail logs are encrypted at rest using KMS CMKs
Ensure AWS CloudTrail log validation is enabled in all regions.
Ensure CloudTrail defines an SNS Topic.
Ensure CloudTrail is enabled in all Regions
Ensure CloudTrail trails are integrated with CloudWatch Logs
Ensure API Gateway has X-Ray tracing enabled
The default namespace should not be used.
Ensure API Gateway stage have logging level defined as appropriate
Ensure that Cognitive Services accounts disable public network access.
Ensure commits are signed
Ensure app service enables detailed error messages
Ensure app service enables failed request tracing
Ensure RDS clusters have an AWS Backup backup plan
Ensure Virtual Machines are utilizing Managed Disks
Ensure all Elasticsearch has node-to-node encryption enabled
We use cookies to improve your site experience, including analytics cookies to understand how you use our product and design better experiences. Please read our Cookie Policy.