Anonymous pull access should not be enabled #2422
Labels
lifecycle: preview
Preview feature and rules
pillar: security
Aligned to the Security pillar.
rule: container-registry
Rules for Container Registry
Milestone
Existing rule
No response
Suggested rule
Create rule
Azure.ACR.AnonymousAccess
that checks if anonymous access is enabled.If anonymous is enabled, the rule should fail.
By default, anonymous is not enabled but may be explicitly set to enabled by setting
properties.anonymousPullEnabled
totrue
.Anonymous access can currently only be enabled on Standard and Premium tiers, and is a preview feature.
Pillar
Security
Additional context
The text was updated successfully, but these errors were encountered: