Loading controls...

Control: Key vault deleted vaults should not exceed tag limit

Description

Check if the number of tags on Key vault deleted vaults do not exceed the limit.

Usage

Run the control in your terminal:

steampipe check azure_tags.control.key_vault_deleted_vault_tag_limit

Snapshot and share results via Steampipe Cloud:

steampipe login
steampipe check --share azure_tags.control.key_vault_deleted_vault_tag_limit

Plugins & Tables

azure_key_vault_deleted_vault

Params

Args	Name	Default	Description	Variable
$1	tag_limit	`45`		tag_limit

SQL

with analysis as (
  select
    id,
    title,
    cardinality(
      array(
        select
          jsonb_object_keys(tags)
      )
    ) as num_tag_keys,
    resource_group,
    subscription_id
  from
    azure_key_vault_deleted_vault
)
select
  id as resource,
  case
    when num_tag_keys > $1 :: integer then 'alarm'
    else 'ok'
  end as status,
  title || ' has ' || num_tag_keys || ' tag(s).' as reason,
  resource_group,
  subscription_id
from
  analysis;

turbot/azure_tags

Control: Key vault deleted vaults should not exceed tag limit

Description

Usage

Plugins & Tables

Params

SQL

Steampipe

Resources

Community