-
-
Notifications
You must be signed in to change notification settings - Fork 2
Azure.DevOps.ServiceConnections.ProductionCheckProtection
github-actions edited this page Oct 21, 2023
·
5 revisions
category: Microsoft Azure DevOps Service Connections severity: Severe online version: https://github.com/cloudyspells/PSRule.Rules.AzureDevOps/blob/main/src/PSRule.Rules.AzureDevOps/en/Azure.DevOps.ServiceConnections.ProductionCheckProtection.md
A service connection scoped to production should be protected. This will help ensure no accidental changes are made to the production resources.
Protecting a service connection with one or more checks will help prevent accidental changes to production resources. For example, a service connection scoped to production should be protected with a check that requires a minimum number of reviewers or a specific CI pipeline must pass.
Mininum TokenType: ReadOnly
Consider protecting a service connection scoped to production with one or more checks.