Azure.Preview_2025_09#
Include rules released September 2025 or prior for Azure preview only features.
Rules#
The following rules are included within the Azure.Preview_2025_09 baseline.
This baseline includes a total of 8 rules.
| Name | Synopsis | Severity |
|---|---|---|
| Azure.ACR.Quarantine | Enable container image quarantine, scan, and mark images as verified. | Important |
| Azure.ACR.Retention | Use a retention policy to cleanup untagged manifests. | Important |
| Azure.ACR.SoftDelete | Container registry artifacts are permanently lost when accidentally deleted without soft delete protection. | Important |
| Azure.Arc.Kubernetes.Defender | Deploy Microsoft Defender for Containers extension for Arc-enabled Kubernetes clusters. | Important |
| Azure.Arc.Server.MaintenanceConfig | Use a maintenance configuration for Arc-enabled servers. | Important |
| Azure.Defender.Storage.DataScan | Enable sensitive data threat detection in Microsoft Defender for Storage. | Critical |
| Azure.ServiceBus.GeoReplica | Enhance resilience to regional outages by replicating namespaces. | Important |
| Azure.Storage.Defender.DataScan | Enable sensitive data threat detection in Microsoft Defender for Storage. | Critical |