CodeAnt AI home page

Support
Dashboard
Dashboard

Join Community

Start Here

What is CodeAnt?

Setup

Github
Bitbucket
Gitlab
Azure Devops

Pull Request Review

Features
Customize Review
Quality Gates
Integrations

Scan center

Code Security
Code Quality
Cloud Security
Engineering Productivity

Integrations

Jira
Test Coverage
CI/CD

IDE

Setup
Review
Enhancements

Rule Reference

Compliance
Anti-Patterns
Code Governance
Infrastructure Security Database
Application Security Database
- Apex
- Bash
- C
- Clojure
- Cpp
- Csharp
- Dockerfile
- Elixir
- Fingerprints
- Generic
- Go
- Html
- Java
- Javascript
- Json
- Kotlin
- Ocaml
- Php
- Problem-based-packs
- Python
- Ruby
- Rust
- Scala
- Solidity
- Swift
- Terraform
  - Aws
  - Azure
    - Best practice
    - Security
    - Security
  - Gcp
  - Lang
- Typescript
- Yaml

Resources

Open Source
Blogs

Security

Keyvault

keyvault-content-type-for-secret

Key vault Secret should have a content type set

keyvault-ensure-secret-expires

Ensure that the expiration date is set on all secrets
Likelihood: LOW
Confidence: MEDIUM
CWE:
- CWE-262: Not Using Password Aging

keyvault-purge-enabled

Key vault should have purge protection enabled
Likelihood: MEDIUM
Confidence: MEDIUM
CWE:
- CWE-693: Protection Mechanism Failure

keyvault-specify-network-acl

Network ACLs allow you to reduce your exposure to risk by limiting what can access your key vault. The default action of the Network ACL should be set to deny for when IPs are not matched. Azure services can be allowed to bypass.
Likelihood: LOW
Confidence: LOW
CWE:
- CWE-284: Improper Access Control
OWASP:
- A05:2017 - Broken Access Control
- A01:2021 - Broken Access Control

keyvault-ensure-key-expires

Ensure that the expiration date is set on all keys
Likelihood: LOW
Confidence: MEDIUM
CWE:
- CWE-262: Not Using Password Aging

Functionapp Storage

twitter linkedin

Powered by Mintlify

Assistant

Responses are generated using AI and may contain mistakes.