Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScope

category: Microsoft Azure DevOps Pipelines severity: Severe online version: https://github.com/cloudyspells/PSRule.Rules.AzureDevOps/blob/main/src/PSRule.Rules.AzureDevOps/en/Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScope.md

Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScope

SYNOPSIS

Project settings should limit job authorization scope.

DESCRIPTION

Limiting the job authorization scope to the current project will prevent the job from being able to access resources in other projects. This can help prevent accidental access to resources in other projects.

Mininum TokenType: ReadOnly

RECOMMENDATION

Consider limiting the job authorization scope to the current project in the project settings.

LINKS

Azure DevOps Security best practices - Tasks

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScope

category: Microsoft Azure DevOps Pipelines severity: Severe online version: https://github.com/cloudyspells/PSRule.Rules.AzureDevOps/blob/main/src/PSRule.Rules.AzureDevOps/en/Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScope.md

Azure.DevOps.Pipelines.Settings.LimitJobAuthorizationScope

SYNOPSIS

DESCRIPTION

RECOMMENDATION

LINKS

Clone this wiki locally