Skip to content

v1.40.0

Latest
Latest
Compare
Choose a tag to compare
@BernieWhite BernieWhite released this 09 Dec 16:30
· 7 commits to main since this release
v1.40.0
faf7b2d
This commit was created on GitHub.com and signed with GitHub’s verified signature.
GPG key ID: B5690EEEBB952194
Learn about vigilant mode.

What's changed since v1.39.3:

  • New features:
    • Added support for expanding from .jsonc parameter files by @BernieWhite.
      #2053
      • Previously only parameter files with the .json extension where automatically expanded.
      • This feature adds support so that JSON parameter files with the .jsonc extension are also discovered and expanded.
      • No additional configuration is required if expansion of JSON parameter files is enabled.
      • To enable parameter file expansion set the AZURE_PARAMETER_FILE_EXPANSION configuration option to true.
  • Updated rules:
    • Deployment:
      • Updated Azure.Deployment.SecureValue to check additional resource types by @BernieWhite.
        #2650
        #2651
        • Added support for container apps secret properties.
        • Added support for deployment script secret properties.
        • Bumped rule set to 2024_12.
      • Updated Azure.Deployment.SecureParameter to reduce false positives by @BernieWhite.
        #3149
        • Parameters named ending with name, uri, url, path, type, id, or options are ignored.
        • The customerManagedKey parameter is ignored.
    • Microsoft Defender for Cloud:
      • Updated Azure.DefenderCloud.Contact to use emails property and removed phone by @BernieWhite.
        #3117
        • Renamed rule to Azure.Defender.SecurityContact to better align with naming for defender rules.
        • Bumped rule set to 2024_12.
  • General improvements:
  • Engineering:
  • Bug fixes:
    • Fixed evaluation of APIM policies when using embedded C# with quotes by @BernieWhite.
      #3184
    • Fixed resource group ID is incorrect under subscription scope by @BernieWhite.
      #3198
    • Fixed object to hashtable conversion for default parameter values by @BernieWhite.
      #3033
    • Fixed deployments with more than one module at tenant scope by @BernieWhite.
      #3167
    • Fixed projection of default role authorization property principalType by @BernieWhite.
      #3163
    • Fixed user defined function not found when used as parameter default by @BernieWhite.
      #3169
    • Fixed evaluation of Azure.NSG.LateralTraversal with empty string properties by @BernieWhite.
      #3130
    • Fixed evaluation of Azure.Deployment.AdminUsername with symbolic references by @BernieWhite.
      #3146
    • Fixed output map expansion with resource IDs by @BernieWhite.
      #3153

What's changed since pre-release v1.40.0-B0206:

  • No additional changes.

See change log.

Contributors

BernieWhite and that-ar-guy
Assets 2
Loading