PSRule.Rules.AzureDevOps

0.2.1

PSRule rules module for Azure DevOps project configuration best practices. This module helps to audit an Azure DevOps project for secure and best practice configuration. The module requires PSRule to be installed.

Minimum PowerShell version

5.1

There is a newer prerelease version of this module available.
See the version list below for details.

Installation Options

Copy and Paste the following command to install this package using PowerShellGet More Info

Install-Module -Name PSRule.Rules.AzureDevOps -RequiredVersion 0.2.1

Copy and Paste the following command to install this package using Microsoft.PowerShell.PSResourceGet More Info

Install-PSResource -Name PSRule.Rules.AzureDevOps -Version 0.2.1

You can deploy this package directly to Azure Automation. Note that deploying packages with dependencies will deploy all the dependencies to Azure Automation. Learn More

Manually download the .nupkg file to your system's default download location. Note that the file won't be unpacked, and won't include any dependencies. Learn More

Owners

RoderickBant

Copyright

Package Details

Author(s)

Roderick Bant

Release Notes

## What's new:

- Fix bug #53 where data collection fails with error if yaml is not in default branch
- Added secret detection for MySQL, PostgreSQL, MongoDB, Redis, AWS ID, Azure Cognitive Services and OpenAI Connection strings and API keys in variable groups, build- and release definitions.

FileList

PSRule.Rules.AzureDevOps.nuspec
PSRule.Rules.AzureDevOps.psd1
nl\Azure.DevOps.Repos.BranchPolicyMinimumReviewers.md
rules\Standards.Rule.ps1
en\Azure.DevOps.ServiceConnections.ProductionBranchLimit.md
nl\Azure.DevOps.Repos.BranchPolicyAllowSelfApproval.md
rules\Config.Rule.yaml
en\Azure.DevOps.Repos.HasBranchPolicy.md
PSRule.Rules.AzureDevOps.psm1
nl\Azure.DevOps.Pipelines.Environments.ProductionHumanApproval.md
rules\Selectors.Rule.yaml
en\Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScope.md
nl\Azure.DevOps.Repos.License.md
nl\Azure.DevOps.ServiceConnections.Description.md
Functions\DevOps.Pipelines.Settings.ps1
en\Azure.DevOps.Pipelines.Releases.Definition.SelfApproval.md
nl\Azure.DevOps.Pipelines.Core.UseYamlDefinition.md
nl\Azure.DevOps.Tasks.VariableGroup.Description.md
Functions\DevOps.Tasks.VariableGroups.ps1
en\Azure.DevOps.ServiceConnections.GitHubPAT.md
nl\Azure.DevOps.ServiceConnections.WorkloadIdentityFederation.md
nl\Azure.DevOps.Pipelines.PipelineYaml.StepDisplayName.md
Functions\DevOps.Repos.ps1
en\Azure.DevOps.Repos.InheritedPermissions.md
nl\Azure.DevOps.Repos.BranchPolicyResetVotes.md
nl\Azure.DevOps.Pipelines.Environments.ProductionBranchLimit.md
Functions\DevOps.Pipelines.Environments.ps1
en\Azure.DevOps.Repos.Readme.md
nl\Azure.DevOps.Repos.BranchPolicyEnforceLinkedWorkItems.md
nl\Azure.DevOps.Repos.BranchPolicyIsEnabled.md
Functions\DevOps.ServiceConnections.ps1
en\Azure.DevOps.Pipelines.Releases.Definition.ProductionApproval.md
nl\Azure.DevOps.Pipelines.Environments.Description.md
nl\Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScopeForYamlPipelines.md
Functions\Common.ps1
en\Azure.DevOps.Pipelines.Releases.Definition.NoPlainTextSecrets.md
nl\Azure.DevOps.Tasks.VariableGroup.NoKeyVaultNoSecrets.md
nl\Azure.DevOps.ServiceConnections.Scope.md
Functions\DevOps.Pipelines.Releases.ps1
en\Azure.DevOps.Repos.BranchPolicyMinimumReviewers.md
nl\Azure.DevOps.Repos.BranchPolicyCommentResolution.md
nl\Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScopeForReleasePipelines.md
Functions\DevOps.Pipelines.Core.ps1
en\Azure.DevOps.Repos.BranchPolicyAllowSelfApproval.md
nl\Azure.DevOps.Tasks.VariableGroup.NoPlainTextSecrets.md
nl\Azure.DevOps.Pipelines.PipelineYaml.AgentPoolVersionNotLatest.md
en\Azure.DevOps.Repos.License.md
en\Azure.DevOps.Pipelines.Environments.ProductionHumanApproval.md
nl\Azure.DevOps.Pipelines.Core.NoPlainTextSecrets.md
nl\Azure.DevOps.Pipelines.Releases.Definition.InheritedPermissions.md
en\Azure.DevOps.Pipelines.Core.UseYamlDefinition.md
en\Azure.DevOps.ServiceConnections.Description.md
nl\Azure.DevOps.Repos.GitHubAdvancedSecurityBlockPushes.md
nl\Azure.DevOps.ServiceConnections.ProductionCheckProtection.md
en\Azure.DevOps.ServiceConnections.WorkloadIdentityFederation.md
en\Azure.DevOps.Tasks.VariableGroup.Description.md
nl\Azure.DevOps.Repos.BranchPolicyMergeStrategy.md
nl\Azure.DevOps.ServiceConnections.ProductionHumanApproval.md
en\Azure.DevOps.Repos.BranchPolicyResetVotes.md
en\Azure.DevOps.Pipelines.PipelineYaml.StepDisplayName.md
nl\Azure.DevOps.Pipelines.Settings.RestrictSecretsForPullRequestFromFork.md
nl\Azure.DevOps.Pipelines.Settings.SanitizeShellTaskArguments.md
en\Azure.DevOps.Repos.BranchPolicyEnforceLinkedWorkItems.md
en\Azure.DevOps.Pipelines.Environments.ProductionBranchLimit.md
nl\Azure.DevOps.Repos.GitHubAdvancedSecurityEnabled.md
nl\Azure.DevOps.Pipelines.Settings.LimitSetVariablesAtQueueTime.md
en\Azure.DevOps.Pipelines.Environments.Description.md
en\Azure.DevOps.Repos.BranchPolicyIsEnabled.md
nl\Azure.DevOps.Pipelines.Settings.RequireCommentForPullRequestFromFork.md
nl\Azure.DevOps.Pipelines.Core.InheritedPermissions.md
en\Azure.DevOps.Tasks.VariableGroup.NoKeyVaultNoSecrets.md
en\Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScopeForYamlPipelines.md
nl\Azure.DevOps.Pipelines.Environments.ProductionCheckProtection.md
nl\Azure.DevOps.ServiceConnections.ClassicAzure.md
en\Azure.DevOps.Repos.BranchPolicyCommentResolution.md
en\Azure.DevOps.ServiceConnections.Scope.md
nl\Azure.DevOps.Repos.BranchPolicyRequireBuild.md
rules\AzureDevOps.Pipelines.Releases.Rule.ps1
en\Azure.DevOps.Tasks.VariableGroup.NoPlainTextSecrets.md
en\Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScopeForReleasePipelines.md
nl\Azure.DevOps.ServiceConnections.ProductionBranchLimit.md
rules\Baseline.NoExtraLicense.Rule.yaml
en\Azure.DevOps.Pipelines.Core.NoPlainTextSecrets.md
en\Azure.DevOps.Pipelines.PipelineYaml.AgentPoolVersionNotLatest.md
nl\Azure.DevOps.Repos.HasBranchPolicy.md
rules\AzureDevOps.Pipelines.Settings.Rule.ps1
en\Azure.DevOps.Repos.GitHubAdvancedSecurityBlockPushes.md
en\Azure.DevOps.Pipelines.Releases.Definition.InheritedPermissions.md
nl\Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScope.md
rules\Baseline.Default.Rule.yaml
en\Azure.DevOps.Repos.BranchPolicyMergeStrategy.md
en\Azure.DevOps.ServiceConnections.ProductionCheckProtection.md
nl\Azure.DevOps.Pipelines.Releases.Definition.SelfApproval.md
rules\AzureDevOps.Pipelines.PipelineYaml.Rule.ps1
en\Azure.DevOps.Pipelines.Settings.RestrictSecretsForPullRequestFromFork.md
en\Azure.DevOps.ServiceConnections.ProductionHumanApproval.md
nl\Azure.DevOps.ServiceConnections.GitHubPAT.md
rules\AzureDevOps.Pipelines.Core.Rule.ps1
en\Azure.DevOps.Repos.GitHubAdvancedSecurityEnabled.md
en\Azure.DevOps.Pipelines.Settings.SanitizeShellTaskArguments.md
nl\Azure.DevOps.Repos.InheritedPermissions.md
rules\AzureDevOps.Pipelines.Environments.Rule.ps1
en\Azure.DevOps.Pipelines.Settings.RequireCommentForPullRequestFromFork.md
en\Azure.DevOps.Pipelines.Settings.LimitSetVariablesAtQueueTime.md
nl\Azure.DevOps.Repos.Readme.md
rules\AzureDevOps.Tasks.VariableGroups.Rule.ps1
en\Azure.DevOps.Pipelines.Environments.ProductionCheckProtection.md
en\Azure.DevOps.Pipelines.Core.InheritedPermissions.md
nl\Azure.DevOps.Pipelines.Releases.Definition.ProductionApproval.md
rules\AzureDevOps.Repos.Rule.ps1
en\Azure.DevOps.Repos.BranchPolicyRequireBuild.md
en\Azure.DevOps.ServiceConnections.ClassicAzure.md
nl\Azure.DevOps.Pipelines.Releases.Definition.NoPlainTextSecrets.md
rules\AzureDevOps.ServiceConnection.Rule.ps1

Version History

Version	Downloads	Last updated
0.5.1	3,372	4/1/2024
0.5.0	307	1/20/2024
0.4.4	17	1/16/2024
0.4.3	44	1/11/2024
0.4.2	31	1/7/2024
0.4.1	28	1/4/2024
0.4.0	25	1/4/2024
0.4.0-preview1	6	12/29/2023
0.3.0	76	12/17/2023
0.3.0-preview4	6	12/10/2023
0.3.0-preview1	6	12/10/2023
0.2.1 (current version)	76	11/25/2023
0.2.0	41	10/21/2023
0.1.1	26	10/8/2023
0.1.0	8	10/6/2023
0.0.13	16	9/30/2023
0.0.12	9	9/26/2023
0.0.11	17	9/24/2023
0.0.10	6	9/23/2023
0.0.9	6	9/22/2023
0.0.8	8	9/21/2023
0.0.7	8	9/20/2023
0.0.6	6	9/18/2023
0.0.5	7	9/17/2023
0.0.4	6	9/17/2023
0.0.3	7	9/17/2023
0.0.2	7	9/16/2023
0.0.1	6	9/16/2023

Show less