Add security plans for gh-aspnet-webapp and sample-web-app #118

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged

CalinL merged 1 commit into main from feature/custom-agents-with-some-gh-fixes

Feb 5, 2026

Merged

Add security plans for gh-aspnet-webapp and sample-web-app #118

Add security plans for gh-aspnet-webapp and sample-web-app

GitHub Advanced Security / templateanalyzer failed Feb 5, 2026 in 7s

3 new alerts including 3 errors

New alerts in code changed by this pull request

3 errors

See annotations below for details.

View all branch alerts.

Annotations

Check failure on line 1 in blueprints/sample-web-app/bicep/main.bicep

Code scanning / templateanalyzer

Use Advanced Threat Protection. Error

Enable Microsoft Defender for Azure SQL logical server.

Check failure on line 1 in blueprints/sample-web-app/bicep/main.bicep

Code scanning / templateanalyzer

Enable auditing for Azure SQL DB server. Error

Auditing for Azure SQL Database tracks database events and writes them to an audit log. Audit logs help you find suspicious events, unusual activity, and trends.

Check failure on line 141 in blueprints/sample-web-app/bicep/main.bicep

Code scanning / templateanalyzer

Use AAD authentication with SQL databases. Error

Azure SQL Database offer two authentication models, Azure Active Directory (AAD) and SQL authentication. AAD authentication supports centralized identity management in addition to modern password protections. Some of the benefits of AAD authentication over SQL authentication including: Support for Azure Multi-Factor Authentication (MFA). Conditional-based access with Conditional Access. It is also possible to disable SQL authentication entirely and only use AAD authentication.