You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Checking ARM template (in Azure DevOps) with an exported Event Hub passes all checks, which are Azure_EventHub_AuthZ_Use_Min_Permissions_Access_Policies but build task still fails.
Description
When runnin the ARM Template Checker against an extracted template with event hub namespace and child resources such as sas tokens, the template validation result turns out as passed, but it appears that some internal error causes the task to fail overall.
Steps to reproduce
extract an arm template from the azure portal that has an event hub and the event hub has a shared access policy.
Expected behavior
The checks are all Passed, so the outcome of the template checker task should be successfull.
Actual behavior
The arm template checker task fails with the following debug logs:
Note: These (Verify Manual) control states have been configured to be considered as 'Passed'.
Actual Passed 14
Treated As Passed 2
--------------- --------
Total Passed 16
==============================================================================================
==============================================================================
Note : Summary 'CSV' and detailed 'LOG' output files are available under 'Download all logs as ZIP' option.
==============================================================================
Cleaning logs from temp directory...
##[debug]Caught exception from task script.
##[debug]Error record:
##[debug]Security controls are failing in your ARM template(s).
##[debug]At D:\a\_tasks\AzSKARMTemplateChecker_6102f8a8-06a6-4918-9d2e-c02e1b659d50\4.0.0\ARMTemplateCheckerRuntime.ps1:311 char:21
##[debug]+ ... throw "Security controls are failing in your ARM template ...
##[debug]+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
##[debug] + CategoryInfo : OperationStopped: (Security contro...RM template(s).:String) [], RuntimeException
##[debug] + FullyQualifiedErrorId : Security controls are failing in your ARM template(s).
##[debug]
##[debug]Script stack trace:
##[debug]at <ScriptBlock>, D:\a\_tasks\AzSKARMTemplateChecker_6102f8a8-06a6-4918-9d2e-c02e1b659d50\4.0.0\ARMTemplateCheckerRuntime.ps1: line 311
##[debug]at <ScriptBlock>, <No file>: line 1
##[debug]at <ScriptBlock>, <No file>: line 22
##[debug]at <ScriptBlock>, <No file>: line 18
##[debug]at <ScriptBlock>, <No file>: line 1
##[debug]Exception:
##[debug]System.Management.Automation.RuntimeException: Security controls are failing in your ARM template(s).
##[error]Security controls are failing in your ARM template(s).
##[debug]Processed: ##vso[task.logissue type=error]Security controls are failing in your ARM template(s).
##[debug]Processed: ##vso[task.complete result=Failed]
The text was updated successfully, but these errors were encountered:
Title
Checking ARM template (in Azure DevOps) with an exported Event Hub passes all checks, which are Azure_EventHub_AuthZ_Use_Min_Permissions_Access_Policies but build task still fails.
Description
When runnin the ARM Template Checker against an extracted template with event hub namespace and child resources such as sas tokens, the template validation result turns out as passed, but it appears that some internal error causes the task to fail overall.
Steps to reproduce
extract an arm template from the azure portal that has an event hub and the event hub has a shared access policy.
Expected behavior
The checks are all Passed, so the outcome of the template checker task should be successfull.
Actual behavior
The arm template checker task fails with the following debug logs:
The text was updated successfully, but these errors were encountered: