github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/azure/keyvault/no_purge.tf.go

github.com/khulnasoft-lab/defsec@v1.0.5-0.20230827010352-5e9f46893d95/rules/cloud/policies/azure/keyvault/no_purge.tf.go (about)

     1  package keyvault
     2  
     3  var terraformNoPurgeGoodExamples = []string{
     4  	`
     5   resource "azurerm_key_vault" "good_example" {
     6       name                        = "examplekeyvault"
     7       location                    = azurerm_resource_group.good_example.location
     8       enabled_for_disk_encryption = true
     9       soft_delete_retention_days  = 7
    10       purge_protection_enabled    = true
    11   }
    12   `,
    13  }
    14  
    15  var terraformNoPurgeBadExamples = []string{
    16  	`
    17   resource "azurerm_key_vault" "bad_example" {
    18       name                        = "examplekeyvault"
    19       location                    = azurerm_resource_group.bad_example.location
    20       enabled_for_disk_encryption = true
    21       purge_protection_enabled    = false
    22   }
    23   `,
    24  }
    25  
    26  var terraformNoPurgeLinks = []string{
    27  	`https://registry.terraform.io/providers/hashicorp/azurerm/latest/docs/resources/key_vault#purge_protection_enabled`,
    28  }
    29  
    30  var terraformNoPurgeRemediationMarkdown = ``