| Source | Azure Portal | |||||||||||||||
| Display name | [Deprecated]: API apps that use Python should use the latest 'Python version' | |||||||||||||||
| Id | 74c3584d-afae-46f7-a20a-6f8adba71a16 | |||||||||||||||
| Version | 3.0.0-deprecated Details on versioning |
|||||||||||||||
| Versioning |
Versions supported for Versioning: 1 3.0.0 (3.0.0-deprecated) Built-in Versioning [Preview] |
|||||||||||||||
| Category | App Service Microsoft Learn |
|||||||||||||||
| Description | Periodically, newer versions are released for Python software either due to security flaws or to include additional functionality. Using the latest Python version for API apps is recommended in order to take advantage of security fixes, if any, and/or new functionalities of the latest version. We recommend all customers who are still using API apps to implement the built-in policy called 'App Service apps that use Python should use the latest 'Python version''. | |||||||||||||||
| Cloud environments | AzureCloud = true AzureUSGovernment = unknown AzureChinaCloud = unknown |
|||||||||||||||
| Available in AzUSGov | Unknown, no evidence if Policy definition is/not available in AzureUSGovernment | |||||||||||||||
| Assessment(s) |
Assessments count: 1 Assessment Id: c2c90d64-38e2-e984-1457-7f4a98168c72 DisplayName: Python should be updated to the latest version for API apps Description: It's important to regularly update the Python software used in API apps to the latest version. Newer versions often include security fixes and additional functionalities. If not updated, the API apps may be exposed to security vulnerabilities present in older versions, potentially leading to breaches. Staying updated ensures the apps benefit from the latest security patches and features. Remediation description: To set the Python version for your API app, follow the instructions to show and set the version using the Azure CLI outlined in this document: https://aka.ms/configure-python Categories: AppServices Severity: Medium preview: True |
|||||||||||||||
| Mode | Indexed | |||||||||||||||
| Type | BuiltIn | |||||||||||||||
| Preview | False | |||||||||||||||
| Deprecated | True | |||||||||||||||
| Effect | Default AuditIfNotExists Allowed AuditIfNotExists, Disabled |
|||||||||||||||
| RBAC role(s) | none | |||||||||||||||
| Rule aliases | THEN-ExistenceCondition (1)
|
|||||||||||||||
| Rule resource types | IF (1) |
|||||||||||||||
| Compliance | Not a Compliance control | |||||||||||||||
| Initiatives usage | none | |||||||||||||||
| History |
|
|||||||||||||||
| JSON compare |
compare mode:
version left:
version right:
|
|||||||||||||||
| JSON |
|