AKS Cluster Without Upgrade Channel

Description

Code Example

terraform

resource "azurerm_kubernetes_cluster" "example" {
  name                = "example-aks1"
  location            = azurerm_resource_group.example.location
  resource_group_name = azurerm_resource_group.example.name

  # If using azurerm version below 4.0
+ automatic_channel_upgrade = "stable"
  # If using azurerm version 4.0 and above
+ automatic_upgrade_channel = "stable"

  default_node_pool {
    name       = "default"
    node_count = 1
    vm_size    = "Standard_D2_v2"
  }

  identity {
    type = "SystemAssigned"
  }

  tags = {
    Environment = "production"
  }
}

Remediation

Terraform

Resource: azurerm_kubernetes_cluster
Arguments: automatic_upgrade_channel

Rule Details

Field	Value
ID	IAC-0678
Severity	LOW
IaC Type	arm
Frameworks	Terraform,
Checkov ID	CKV_AZURE_171

References

Checkov Rule

Overview

SAST (Application Security)

SCA (Dependencies)

Secrets Detection

IaC Security

License Compliance

SAST Rules

IaC Rules

License Rules

AKS Cluster Without Upgrade Channel

Description

Code Example

Remediation

Rule Details

References

SAST Rules

IaC Rules

License Rules

AKS Cluster Without Upgrade Channel ​

Description ​

Code Example ​

Remediation ​

Rule Details ​

References ​

AKS Cluster Without Upgrade Channel

Description

Code Example

Remediation

Rule Details

References