synapse

package

v0.90.1 Latest Latest Go to latest Published: Jun 30, 2023 License: MIT Imports: 5 Imported by: 0

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/aquasecurity/defsec

Links

Open Source Insights

Documentation ¶

Index ¶

Variables

Constants ¶

This section is empty.

Variables ¶

View Source

var CheckVirtualNetworkEnabled = rules.Register(
	scan.Rule{
		AVDID:      "AVD-AZU-0034",
		Provider:   providers.AzureProvider,
		Service:    "synapse",
		ShortCode:  "virtual-network-enabled",
		Summary:    "Synapse Workspace should have managed virtual network enabled, the default is disabled.",
		Impact:     "Your Synapse workspace is not using the private endpoints",
		Resolution: "Set manage virtual network to enabled",
		Explanation: `Synapse Workspace does not have managed virtual network enabled by default.

When you create your Azure Synapse workspace, you can choose to associate it to a Microsoft Azure Virtual Network. The Virtual Network associated with your workspace is managed by Azure Synapse. This Virtual Network is called a Managed workspace Virtual Network.
Managed private endpoints are private endpoints created in a Managed Virtual Network associated with your Azure Synapse workspace. Managed private endpoints establish a private link to Azure resources. You can only use private links in a workspace that has a Managed workspace Virtual Network.`,
		Links: []string{
			"https://docs.microsoft.com/en-us/azure/synapse-analytics/security/synapse-workspace-managed-private-endpoints",
			"https://docs.microsoft.com/en-us/azure/synapse-analytics/security/synapse-workspace-managed-vnet",
		},
		Terraform: &scan.EngineMetadata{
			GoodExamples:        terraformVirtualNetworkEnabledGoodExamples,
			BadExamples:         terraformVirtualNetworkEnabledBadExamples,
			Links:               terraformVirtualNetworkEnabledLinks,
			RemediationMarkdown: terraformVirtualNetworkEnabledRemediationMarkdown,
		},
		Severity: severity.Medium,
	},
	func(s *state.State) (results scan.Results) {
		for _, workspace := range s.Azure.Synapse.Workspaces {
			if workspace.Metadata.IsUnmanaged() {
				continue
			}
			if workspace.EnableManagedVirtualNetwork.IsFalse() {
				results.Add(
					"Workspace does not have a managed virtual network enabled.",
					workspace.EnableManagedVirtualNetwork,
				)
			} else {
				results.AddPassed(&workspace)
			}
		}
		return
	},
)

Functions ¶

This section is empty.

Types ¶

This section is empty.

Source Files ¶

View all Source files

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL