Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat(arm): AppServicePythonVersion - 82 check the 'python version' is the latest, if used to run the web app #6282

Merged
merged 7 commits into from
Jun 1, 2024
Merged

feat(arm): AppServicePythonVersion - 82 check the 'python version' is the latest, if used to run the web app #6282

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
7 commits
Select commit Hold shift + click to select a range
7d764d8
check the python version when run the web app
MaliUser1 May 7, 2024
d1bc793
Merge branch 'main' into app-service-python-version
RachelBorzi May 8, 2024
7aae943
Merge branch 'main' into app-service-python-version
RachelBorzi May 9, 2024
13eb04f
check the python version when run the web app update version to 3.10
MaliUser1 May 19, 2024
716a93c
Merge remote-tracking branch 'origin/app-service-python-version' into…
MaliUser1 May 19, 2024
2d2d43e
change the python_version between 3.9 - 3.12
MaliUser1 May 30, 2024
7092bf9
change the python_version between 3.9 - 3.12
MaliUser1 May 30, 2024
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Jump to
Jump to file
Failed to load files.
Diff view
Diff view
28 changes: 28 additions & 0 deletions checkov/arm/checks/resource/AppServicePythonVersion.py
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,28 @@
from typing import List, Any

from checkov.arm.base_resource_value_check import BaseResourceValueCheck
from checkov.common.models.enums import CheckCategories, CheckResult


class AppServicePythonVersion(BaseResourceValueCheck):

def __init__(self) -> None:
name = "Ensure that 'Python version' is the latest, if used to run the web app"
id = "CKV_AZURE_82"
supported_resources = ("Microsoft.Web/sites",)
categories = (CheckCategories.GENERAL_SECURITY,)
super().__init__(
name=name,
id=id,
categories=categories,
supported_resources=supported_resources,
missing_block_result=CheckResult.UNKNOWN)

def get_inspected_key(self) -> str:
return "properties/siteConfig/pythonVersion"

def get_expected_values(self) -> List[Any]:
return ["3.9", "3.10", "3.11", "3.12"]


check = AppServicePythonVersion()