Implement bicep bootstrap #1503
oZakaribicep-build-to-validate.yml
on: pull_request
Bicep Build & Lint All Modules
4m 12s
Test Azure Well-Architected Framework (PSRule)
2m 24s
Annotations
10 errors and 10 warnings
|
Test Azure Well-Architected Framework (PSRule)
Failed to expand bicep source '/home/runner/work/ALZ-Bicep/ALZ-Bicep/infra-as-code/bicep/modules/hubNetworking/samples/baseline.sample.bicep'. Exception calling "GetBicepResources" with "2" argument(s): "Unable to expand resources because the source file '/home/runner/work/ALZ-Bicep/ALZ-Bicep/infra-as-code/bicep/modules/hubNetworking/samples/baseline.sample.bicep' was not valid. An error occurred evaluating expression '[if(equals(toLower(variables('varGwConfig')[copyIndex()].gatewayType), 'vpn'), createObject('vpnClientAddressPool', if(contains(variables('varGwConfig')[copyIndex()].vpnClientConfiguration, 'vpnClientAddressPool'), variables('varGwConfig')[copyIndex()].vpnClientConfiguration.vpnClientAddressPool, ''), 'vpnClientProtocols', if(contains(variables('varGwConfig')[copyIndex()].vpnClientConfiguration, 'vpnClientProtocols'), variables('varGwConfig')[copyIndex()].vpnClientConfiguration.vpnClientProtocols, ''), 'vpnAuthenticationTypes', if(contains(variables('varGwConfig')[copyIndex()].vpnClientConfiguration, 'vpnAuthenticationTypes'), variables('varGwConfig')[copyIndex()].vpnClientConfiguration.vpnAuthenticationTypes, ''), 'aadTenant', if(contains(variables('varGwConfig')[copyIndex()].vpnClientConfiguration, 'aadTenant'), variables('varGwConfig')[copyIndex()].vpnClientConfiguration.aadTenant, ''), 'aadAudience', if(contains(variables('varGwConfig')[copyIndex()].vpnClientConfiguration, 'aadAudience'), variables('varGwConfig')[copyIndex()].vpnClientConfiguration.aadAudience, ''), 'aadIssuer', if(contains(variables('varGwConfig')[copyIndex()].vpnClientConfiguration, 'aadIssuer'), variables('varGwConfig')[copyIndex()].vpnClientConfiguration.aadIssuer, ''), 'vpnClientRootCertificates', if(contains(variables('varGwConfig')[copyIndex()].vpnClientConfiguration, 'vpnClientRootCertificates'), variables('varGwConfig')[copyIndex()].vpnClientConfiguration.vpnClientRootCertificates, ''), 'radiusServerAddress', if(contains(variables('varGwConfig')[copyIndex()].vpnClientConfiguration, 'radiusServerAddress'), variables('varGwConfig')[copyIndex()].vpnClientConfiguration.radiusServerAddress, ''), 'radiusServerSecret', if(contains(variables('varGwConfig')[copyIndex()].vpnClientConfiguration, 'radiusServerSecret'), variables('varGwConfig')[copyIndex()].vpnClientConfiguration.radiusServerSecret, '')), null())]' line 6197. The language expression property 'vpnClientConfiguration' doesn't exist."
|
|
Test Azure Well-Architected Framework (PSRule)
AZR-000104: alz-azfwpolicy-[parameters('parLocation')] failed Azure.Firewall.PolicyName. Firewall policy names should meet naming requirements.
|
|
Test Azure Well-Architected Framework (PSRule)
AZR-000399: alz-azfwpolicy-[parameters('parLocation')] failed Azure.Firewall.PolicyMode. Deny high confidence malicious IP addresses, domains and URLs.
|
|
Test Azure Well-Architected Framework (PSRule)
AZR-000103: alz-fw-[parameters('parLocation')] failed Azure.Firewall.Name. Firewall names should meet naming requirements.
|
|
Test Azure Well-Architected Framework (PSRule)
AZR-000399: contoso-azfwpolicy-westus-centralus failed Azure.Firewall.PolicyMode. Deny high confidence malicious IP addresses, domains and URLs.
|
|
Test Azure Well-Architected Framework (PSRule)
AZR-000430: alz-Vpn-Gateway failed Azure.VNG.MaintenanceConfig. Use a customer-controlled maintenance configuration for virtual network gateways.
|
|
Test Azure Well-Architected Framework (PSRule)
AZR-000430: alz-ExpressRoute-Gateway failed Azure.VNG.MaintenanceConfig. Use a customer-controlled maintenance configuration for virtual network gateways.
|
|
Test Azure Well-Architected Framework (PSRule)
AZR-000399: alz-azfwpolicy-eastus failed Azure.Firewall.PolicyMode. Deny high confidence malicious IP addresses, domains and URLs.
|
|
Test Azure Well-Architected Framework (PSRule)
AZR-000429: alz-azfw-eastus failed Azure.Firewall.AvailabilityZone. Deploy firewall instances using availability zones in supported regions to ensure high availability and resilience.
|
|
Test Azure Well-Architected Framework (PSRule)
AZR-000359: minimum private DNS failed Azure.Deployment.Name. Nested deployments should meet naming requirements of deployments.
|
|
Test Azure Well-Architected Framework (PSRule)
Using invariant culture may cause rule infomation to be displayed incorrectly. Consider using -Culture or set the Output.Culture option.
|
|
Test Azure Well-Architected Framework (PSRule)
The option 'Execution.NotProcessedWarning' is deprecated and will be removed with PSRule v3. See http://aka.ms/ps-rule/deprecations for more detail.
|
|
Test Azure Well-Architected Framework (PSRule)
Rule 'PSRule.Rules.Azure\Azure.VNG.VPNAvailabilityZoneSKU' was suppressed by suppression group '.\ALZ.MinimumSample' for 'alz-fw-[parameters('parLocation')]'. Ignore the minimum sample configuration.
|
|
Test Azure Well-Architected Framework (PSRule)
Rule 'PSRule.Rules.Azure\Azure.PublicIP.AvailabilityZone' was suppressed by suppression group '.\ALZ.MinimumSample' for 'alz-fw-[parameters('parLocation')]'. Ignore the minimum sample configuration.
|
|
Test Azure Well-Architected Framework (PSRule)
Rule 'PSRule.Rules.Azure\Azure.VNET.UseNSGs' was suppressed by suppression group '.\ALZ.MinimumSample' for 'alz-fw-[parameters('parLocation')]'. Ignore the minimum sample configuration.
|
|
Test Azure Well-Architected Framework (PSRule)
Rule 'PSRule.Rules.Azure\Azure.PublicIP.StandardSKU' was suppressed by suppression group '.\ALZ.MinimumSample' for 'alz-fw-[parameters('parLocation')]'. Ignore the minimum sample configuration.
|
|
Test Azure Well-Architected Framework (PSRule)
Rule 'PSRule.Rules.Azure\Azure.VNG.VPNActiveActive' was suppressed by suppression group '.\ALZ.MinimumSample' for 'alz-fw-[parameters('parLocation')]'. Ignore the minimum sample configuration.
|
|
Test Azure Well-Architected Framework (PSRule)
Rule 'PSRule.Rules.Azure\Azure.Firewall.Mode' was suppressed by suppression group '.\ALZ.MinimumSample' for 'alz-fw-[parameters('parLocation')]'. Ignore the minimum sample configuration.
|
|
Test Azure Well-Architected Framework (PSRule)
Rule 'PSRule.Rules.Azure\Azure.NSG.LateralTraversal' was suppressed by suppression group '.\ALZ.NSGForBastion' for 'nsg-AzureBastionSubnet'. Ignore NSG lateral movement rule for Azure Bastion as this is needed for Bastion to work.
|
|
Test Azure Well-Architected Framework (PSRule)
Rule 'PSRule.Rules.Azure\Azure.VNG.VPNAvailabilityZoneSKU' was suppressed by suppression group '.\ALZ.MinimumSample' for 'alz-hub-eastus'. Ignore the minimum sample configuration.
|