-
-
Notifications
You must be signed in to change notification settings - Fork 2
Azure.DevOps.Project.MainPipelineAcl.ProjectValidUsers
github-actions edited this page Jan 20, 2024
·
1 revision
category: Microsoft Azure DevOps Projects severity: Severe online version: https://github.com/cloudyspells/PSRule.Rules.AzureDevOps/blob/main/src/PSRule.Rules.AzureDevOps/en/Azure.DevOps.Project.MainPipelineAcl.ProjectValidUsers.md
Project level pipeline acl should not have custom permissions for Project Valid Users
Azure DevOps allows you to set custom permissions for Project Valid Users on the project level pipeline acl. This is not recommended as it can lead to unintended access to pipelines. It is recommended to use the default permissions for Project Valid Users and use custom permissions for specific users or custom groups.
Mininum TokenType: FineGrained
Remove the Project Valid Users group from the pipeline acl.