azure_compliance

Azure Compliance

Cross-Origin Resource Sharing (CORS) should not allow all domains to access your app. Allow only required domains to interact with your app.

appservice_api_app_cors_no_star

hipaa_hitrust_v92_0901_09s1organizational

0901.09s1Organizational.1-09.s 09.08 Exchange of Information

hipaa_hitrust_v92_0916_09s2organizational

0916.09s2Organizational.4-09.s 09.08 Exchange of Information

all_controls_appservice

App Service

nist_sp_800_53_rev_5_cm_6

Configuration Settings (CM-6)

App Service apps should not have CORS configured to allow every resource to access your apps

azure

azuread

Run individual configuration, compliance and security controls or full compliance benchmarks for CIS, HIPAA HITRUST, NIST, PCI DSS across all your Azure subscriptions using Powerpipe and Steampipe.

Apache License 2.0

steampipe-mod-azure-compliance

Control: App Service apps should not have CORS configured to allow every resource to access your apps

Description

Usage

SQL

Tags