Control: Application security groups should not exceed tag limit

Description

Check if the number of tags on Application security groups do not exceed the limit.

Usage

Run the control in your terminal:

powerpipe control run azure_tags.control.application_security_group_tag_limit

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run azure_tags.control.application_security_group_tag_limit --share

Steampipe Tables

azure_application_security_group

SQL

with analysis as (
  select
    id,
    title,
    cardinality(array(select jsonb_object_keys(tags))) as num_tag_keys,
    _ctx,
    tags,
    resource_group,
    subscription_id,
    region
  from
    azure_application_security_group
)
select
  id as resource,
  case
    when num_tag_keys > $1::integer then 'alarm'
    else 'ok'
  end as status,
  title || ' has ' || num_tag_keys || ' tag(s).' as reason
  
  , subscription_id as subscription_id
from
  analysis;

Params

Args	Name	Default	Description	Variable
$1	tag_limit	`45`		tag_limit