category	severity	online version
Microsoft Azure DevOps Service Connections	Severe	https://github.com/cloudyspells/PSRule.Rules.AzureDevOps/blob/main/src/PSRule.Rules.AzureDevOps/en/Azure.DevOps.ServiceConnections.InheritedPermissions.md

Azure.DevOps.ServiceConnections.InheritedPermissions

SYNOPSIS

Service connection permissions should not be inherited from the project.

DESCRIPTION

Service connection permissions should not be inherited from the project. Inherited permissions can lead to unexpected access to sensitive information and resources.

Mininum TokenType: FineGrained

RECOMMENDATION

Consider removing inherited permissions from the service connection and setting permissions explicitly.

LINKS

Azure DevOps Security best practices

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Azure.DevOps.ServiceConnections.InheritedPermissions.md

Azure.DevOps.ServiceConnections.InheritedPermissions.md

Azure.DevOps.ServiceConnections.InheritedPermissions

SYNOPSIS

DESCRIPTION

RECOMMENDATION

LINKS

Files

Azure.DevOps.ServiceConnections.InheritedPermissions.md

Latest commit

History

Azure.DevOps.ServiceConnections.InheritedPermissions.md

File metadata and controls

Azure.DevOps.ServiceConnections.InheritedPermissions

SYNOPSIS

DESCRIPTION

RECOMMENDATION

LINKS