Benchmark: Prohibited
Description
Prohibited tags may contain sensitive, confidential, or otherwise unwanted data and should be removed.
Usage
Install the mod:
mkdir dashboardscd dashboardspowerpipe mod initpowerpipe mod install github.com/turbot/steampipe-mod-azure-tagsStart the Powerpipe server:
steampipe service startpowerpipe serverOpen http://localhost:9033 in your browser and select Prohibited.
Run this benchmark in your terminal:
powerpipe benchmark run azure_tags.benchmark.prohibitedSnapshot and share results via Turbot Pipes:
powerpipe benchmark run azure_tags.benchmark.prohibited --shareControls
- API Management services should not have prohibited tags
- App Service environments should not have prohibited tags
- App Service function apps should not have prohibited tags
- App Service plans should not have prohibited tags
- App Service web apps should not have prohibited tags
- Application security groups should not have prohibited tags
- Batch accounts should not have prohibited tags
- Compute availability sets should not have prohibited tags
- Compute disk encryption sets should not have prohibited tags
- Compute disks should not have prohibited tags
- Compute images should not have prohibited tags
- Compute snapshots should not have prohibited tags
- Compute virtual machines should not have prohibited tags
- Compute virtual machine scale sets should not have prohibited tags
- Container registries should not have prohibited tags
- CosmosDB accounts should not have prohibited tags
- CosmosDB mongo databases should not have prohibited tags
- CosmosDB sql databases should not have prohibited tags
- Data factories should not have prohibited tags
- Data lake analytics accounts should not have prohibited tags
- Data lake stores should not have prohibited tags
- Event Hub namespaces should not have prohibited tags
- ExpressRoute circuits should not have prohibited tags
- Firewalls should not have prohibited tags
- IoT Hubs should not have prohibited tags
- Key vault deleted vaults should not have prohibited tags
- Key vault keys should not have prohibited tags
- Key vault managed hardware security modules should not have prohibited tags
- Key vaults should not have prohibited tags
- Key vault secrets should not have prohibited tags
- Kubernetes clusters should not have prohibited tags
- Load balancers should not have prohibited tags
- Log alerts should not have prohibited tags
- Log profiles should not have prohibited tags
- Logic app workflows should not have prohibited tags
- MariaDB servers should not have prohibited tags
- Mssql elasticpools should not have prohibited tags
- Microsoft SQL managed instances should not have prohibited tags
- MySQL servers should not have prohibited tags
- Network interfaces should not have prohibited tags
- Network security groups should not have prohibited tags
- Network watcher flow logs should not have prohibited tags
- Network watchers should not have prohibited tags
- PostgreSQL servers should not have prohibited tags
- Public IPs should not have prohibited tags
- Recovery services vaults should not have prohibited tags
- Redis caches should not have prohibited tags
- Resource groups should not have prohibited tags
- Route tables should not have prohibited tags
- Search services should not have prohibited tags
- Service Bus namespaces should not have prohibited tags
- SQL databases should not have prohibited tags
- Sql servers should not have prohibited tags
- Storage accounts should not have prohibited tags
- Stream Analytics jobs should not have prohibited tags
- Virtual network gateways should not have prohibited tags
- Virtual networks should not have prohibited tags