turbot/steampipe-mod-azure-tags

Control: Storage accounts should not exceed tag limit

Description

Check if the number of tags on Storage accounts do not exceed the limit.

Usage

Run the control in your terminal:

powerpipe control run azure_tags.control.storage_account_tag_limit

Snapshot and share results via Turbot Pipes:

powerpipe login
powerpipe control run azure_tags.control.storage_account_tag_limit --share

Steampipe Tables

SQL

with analysis as (
select
id,
title,
cardinality(array(select jsonb_object_keys(tags))) as num_tag_keys,
_ctx,
tags,
resource_group,
subscription_id,
region
from
azure_storage_account
)
select
id as resource,
case
when num_tag_keys > $1::integer then 'alarm'
else 'ok'
end as status,
title || ' has ' || num_tag_keys || ' tag(s).' as reason
, subscription_id as subscription_id
from
analysis;

Params

ArgsNameDefaultDescriptionVariable
$1tag_limit
45