Skip to content


Include rules released December 2022 or prior for Azure preview only features.


The following rules are included within Azure.Preview_2022_12. This baseline includes a total of 7 rules.

Name Synopsis Severity
Azure.ACR.Quarantine Enable container image quarantine, scan, and mark images as verified. Important
Azure.ACR.Retention Use a retention policy to cleanup untagged manifests. Important
Azure.ACR.SoftDelete Azure Container Registries should have soft delete policy enabled. Important
Azure.AKS.LocalAccounts Enforce named user accounts with RBAC assigned permissions. Important
Azure.AKS.PodIdentity Configure AKS clusters to use AAD pod identities to access Azure resources securely. Important
Azure.AppConfig.GeoReplica Consider replication for app configuration store to ensure resiliency to region outages. Important
Azure.ContainerApp.Insecure Ensure insecure inbound traffic is not permitted to the container app. Important

Last update: 2022-12-16