AzPolicyAdvertizer

last sync: 2022-May-23 08:52:47 UTC

Azure Policy definition

Running container images should have vulnerability findings resolved

Name

Running container images should have vulnerability findings resolved
Azure Portal

0fc39691-5a3f-4e3e-94ee-2e6447309ad9

Version

1.0.1
details on versioning

Category

Security Center
Microsoft docs

Description

Container image vulnerability assessment scans container images running on your Kubernetes clusters for security vulnerabilities and exposes detailed findings for each image. Resolving the vulnerabilities can greatly improve your containers' security posture and protect them from attacks.

Mode

Indexed

Type

BuiltIn

Preview

FALSE

Deprecated

FALSE

Effect

Default: AuditIfNotExists
Allowed: (AuditIfNotExists, Disabled)

Used RBAC Role

none

Rule Aliases

THEN-ExistenceCondition (1)

Alias	Namespace	ResourceType	DefaultPath	Modifiable
Microsoft.Security/assessments/status.code	Microsoft.Security	assessments	properties.status.code	false

Rule ResourceTypes

IF (1)
Microsoft.ContainerService/managedClusters

History

Date/Time (UTC ymd) (i)	Change type	Change detail
2022-01-07 18:14:35	change	Patch (1.0.0 > 1.0.1) *changes on text case sensitivity are not tracked
2021-12-06 22:17:57	add	0fc39691-5a3f-4e3e-94ee-2e6447309ad9

Used in Initiatives

Initiative DisplayName	Initiative Id	Initiative Category	State	Type
Azure Security Benchmark	1f3afdf9-d0c9-4c3d-847f-89da613e70a8	Security Center	GA	BuiltIn

JSON Changes

Visual JSON JSON (Annotated)

Show unchanged values

JSON

AzPolicyAdvertizer

Azure Policy definition

Running container images should have vulnerability findings resolved

JSON Left

JSON Right