Enable defender for sql servers #2102
Merged
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
fatima99s
reviewed
Nov 6, 2024
alphadev4
approved these changes
Nov 8, 2024
v3rl
added a commit
to v3rl/cloudsploit
that referenced
this pull request
Mar 30, 2025
* Plugin Batch Account Managed Identity * Apply suggestions from code review * Update plugins/azure/batchAccounts/batchAccountsManagedIdentity.js * H-plugin QLDB Ledger Deletion Protection Enabled * H-plugin QLDB Ledger Has Tags * FS-Azure/MysqlserverLogAlerts * FS-Azure/mysqlCmk * FS-Azure/MLRegisteryPlublicAccess * FS-Azure/MLRegistriesTags * FS-Azure/MLWorkspaceCMK * FS-Azure/MLworkspceHBI * FS-Azure/MLworkspceHBI * FS-Azure/MLRegistriesTags * FS-Azure/MLRegisteryPlublicAccess * H-plugin synapse workspace has tags * FS-AWS/GuarddutyEKSProtection * FS-Azure/ContainerAppIPRestriction * H-plugin synapse workspace double encryption * update link * FS-AWS/ManagedBlockchainCloudwatchLogs * FS-AWS/ManagedBlockchainCloudwatchLogs * H-plugin synapse workspace diagnostic logs enabled * update file * updated the category of security center plugins * fix lint * update message * update message * updated the default encryption level to awskms for aws encryption plugins * fix test * update files * update files * update files * update files * Update plugins/aws/qldb/ledgerHasTags.js * Update plugins/aws/qldb/ledgerDeletionProtection.js Co-authored-by: alphadev4 <[email protected]> * Update plugins/azure/synapse/synapseWorkspaceHasTags.js Co-authored-by: alphadev4 <[email protected]> * Update plugins/azure/synapse/synapseWorkspaceHasTags.js * Update plugins/azure/logalerts/mysqlFlexibleServerLoggingEnabled.spec.js * Update plugins/azure/mysqlserver/mysqlFlexibleServerCMKEncrypted.js * Update exports.js * Update plugins/azure/containerapps/containerAppIPRestriction.js * Update plugins/azure/containerapps/containerAppIPRestriction.js * Update plugins/azure/containerapps/containerAppIPRestriction.js * Update plugins/azure/containerapps/containerAppIPRestriction.js * fixed * Update plugins/azure/mysqlserver/mysqlFlexibleServerCMKEncrypted.js * fix * fix * syncing with saas * Update instanceNetworkExposure.js * Update instanceNetworkExposure.js * Update functions.js * fix lint issue * Apply suggestions from code review * Update plugins/aws/guardduty/eksProtectionEnabled.js * Update plugins/aws/guardduty/eksProtectionEnabled.js * Update plugins/aws/guardduty/eksProtectionEnabled.js * Update plugins/azure/machinelearning/mlRegistryPublicAccess.js * Apply suggestions from code review * Update plugins/azure/machinelearning/mlWorkspaceCMKEncrypted.js Co-authored-by: AkhtarAmir <[email protected]> * Update plugins/azure/machinelearning/mlWorkspaceCMKEncrypted.js * updated the link * fixed * fix * Update plugins/aws/managedblockchain/networkMemberCloudwatchLogs.js * Update plugins/azure/synapse/synapseWorkspaceHasTags.js * Update exports.js * Update exports.js * Update exports.js * Update plugins/aws/guardduty/eksProtectionEnabled.js * Update exports.js * Update plugins/azure/machinelearning/mlWorkspaceCMKEncrypted.js * Update plugins/azure/logalerts/mysqlFlexibleServerLoggingEnabled.spec.js * Azure/Storage-Account-Public-Network-Access * Azure/Storage-Account-Public-Network-Access/added check for secured perimeter and spec * syncing with saas * bundles_sync/08_11_24 * bundles_sync/08_11_24 * Update plugins/azure/storageaccounts/storageAccountPublicNetworkAccess.js Co-authored-by: Fatima <[email protected]> * bundles_sync/08_11_24 * bundles_sync/08_11_24 * Revised TDE Protectors Encrypted Plugin Update (aquasecurity#2101) * Revised TDE Protectors Encrypted Plugin Update * Revised tdeProtectorEncrypted --------- Co-authored-by: AkhtarAmir <AkhtarAmir> * Enable defender for sql servers (aquasecurity#2102) * Revised enabeDefenderForSqlServers Plugin Update * Revised enabeDefenderForSqlServers Plugin Update (2) * Revised enableDefenderForSqlSever function --------- Co-authored-by: AkhtarAmir <AkhtarAmir> * Revised diskByokEncryptionEnabled (aquasecurity#2103) * Revised diskByokEncryptionEnabled * suggested fix --------- Co-authored-by: AkhtarAmir <AkhtarAmir> * Revised unAttachedDiskByokEncryptionEnabled (aquasecurity#2104) * Revised unAttachedDiskByokEncryptionEnabled * Apply suggestions from code review suggested changes Co-authored-by: Fatima <[email protected]> * Update unAttachedDiskByokEncryptionEnabled.js * Update unAttachedDiskByokEncryptionEnabled.js * Update unAttachedDiskByokEncryptionEnabled.js * Apply suggestions from code review --------- Co-authored-by: AkhtarAmir <AkhtarAmir> Co-authored-by: Fatima <[email protected]> Co-authored-by: alphadev4 <[email protected]> * Revised dbTDEEnabled (aquasecurity#2110) * Revised dbTDEEnabled * Revised dbTDEEnabled * Apply suggestions from code review suggested fix Co-authored-by: Fatima <[email protected]> * lint resolve * lint resolve --------- Co-authored-by: AkhtarAmir <AkhtarAmir> Co-authored-by: Fatima <[email protected]> Co-authored-by: hamza <[email protected]> * Revised keyVaultSecretExpiryNonRbac (aquasecurity#2109) * Revised keyVaultSecretExpiryNonRbac * Revised keyVaultSecretExpiryNonRbac * Revised keyVaultSecretExpiryNonRbac * Apply suggestions from code review suggested fixes Co-authored-by: Fatima <[email protected]> * Apply suggestions from code review * Update plugins/azure/keyvaults/keyVaultSecretExpiryNonRbac.spec.js --------- Co-authored-by: AkhtarAmir <AkhtarAmir> Co-authored-by: Fatima <[email protected]> Co-authored-by: alphadev4 <[email protected]> * Revised keyVaultSecretExpiry (aquasecurity#2108) * Revised keyVaultSecretExpiry * Revised keyVaultSecretExpiry * Update keyVaultSecretExpiry.js * Update keyVaultSecretExpiry.spec.js --------- Co-authored-by: AkhtarAmir <AkhtarAmir> Co-authored-by: alphadev4 <[email protected]> * Revised keyVaultKeyExpiryNonRbac (2) (aquasecurity#2106) * Revised keyVaultKeyExpiryNonRbac (2) * Apply suggestions from code review suggested fixes Co-authored-by: Fatima <[email protected]> * Apply suggestions from code review Co-authored-by: Fatima <[email protected]> * Apply suggestions from code review * Update plugins/azure/keyvaults/keyVaultKeyExpiryNonRbac.js --------- Co-authored-by: AkhtarAmir <AkhtarAmir> Co-authored-by: Fatima <[email protected]> Co-authored-by: alphadev4 <[email protected]> * Revised keyVaultKeyExpiry (aquasecurity#2105) * Revised keyVaultKeyExpiry * Revised keyVaultKeyExpiry * Apply suggestions from code review * Update plugins/azure/keyvaults/keyVaultKeyExpiry.js * Update keyVaultKeyExpiry.js * Update keyVaultKeyExpiry.spec.js * Apply suggestions from code review * Update plugins/azure/keyvaults/keyVaultKeyExpiry.spec.js * Update plugins/azure/keyvaults/keyVaultKeyExpiry.spec.js * Update plugins/azure/keyvaults/keyVaultKeyExpiry.spec.js --------- Co-authored-by: AkhtarAmir <AkhtarAmir> Co-authored-by: alphadev4 <[email protected]> * TLS Version Changes (aquasecurity#2115) * TLS Version Changes New * TLS fixes --------- Co-authored-by: AkhtarAmir <AkhtarAmir> * Enhance network exposure checks in AWS functions - Added checks for function URL exposure and API Gateway exposure in the `checkNetworkExposure` function. - Implemented logic to identify public function URLs and API Gateway endpoints based on their configurations. * updating logic * fixing lint * fixing failed tests * fixing logic * lint * excluding function URL from vpc checks and adding load balancer and more checks for iam policy conditions * lint * syncing with saas * linting error fix * bundles_sync/01_01/pluginsPR * renaming internet exposure titles to network exposure (aquasecurity#2121) Co-authored-by: AkhtarAmir <AkhtarAmir> * listFindingV2 added * listFindingV2 added * listFindingV2 added * listFindingV2 added * added validation for suppress regex * lint fix * lint fix * lint fix * updated spec * iam role policies updated * plugin enhancement * plugin enhancement * plugin enhancement * update plugin to handle aws managed keys * feat(SAAS-28151 + SAAS-28108): remove unsupported code start plugins + fix all open salt severity to critical * fix code spell * f * fix * fix * Update plugins/aws/codestar/codestarValidRepoProviders.js * changing name to Internet Exposure --------- Co-authored-by: AkhtarAmir <AkhtarAmir> Co-authored-by: alphadev4 <[email protected]> Co-authored-by: fatima99s <[email protected]> Co-authored-by: AkhtarAmir <[email protected]> Co-authored-by: alphadev4 <[email protected]> Co-authored-by: mehakseedat63 <[email protected]> Co-authored-by: Fatima <[email protected]> Co-authored-by: hamza <[email protected]> Co-authored-by: gioroddev <[email protected]> Co-authored-by: AkhtarAmir <[email protected]> Co-authored-by: tzurielw <[email protected]>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
No description provided.