last sync: 2024-Nov-25 18:54:24 UTC

App Service app slots that use Python should use a specified 'Python version'

Azure BuiltIn Policy definition

Source Azure Portal
Display name App Service app slots that use Python should use a specified 'Python version'
Id 9c014953-ef68-4a98-82af-fd0f6b2306c8
Version 1.0.0
Details on versioning
Versioning Versions supported for Versioning: 1
1.0.0
Built-in Versioning [Preview]
Category App Service
Microsoft Learn
Description Periodically, newer versions are released for Python software either due to security flaws or to include additional functionality. Using the latest Python version for App Service apps is recommended in order to take advantage of security fixes, if any, and/or new functionalities of the latest version. This policy only applies to Linux apps. This policy requires you to specify a Python version that meets your requirements.
Mode Indexed
Type BuiltIn
Preview False
Deprecated False
Effect Default
AuditIfNotExists
Allowed
AuditIfNotExists, Disabled
RBAC role(s) none
Rule aliases THEN-ExistenceCondition (1)
Alias Namespace ResourceType Path PathIsDefault DefaultPath Modifiable
Microsoft.Web/sites/slots/config/web.linuxFxVersion Microsoft.Web sites/slots/config properties.linuxFxVersion True False
Rule resource types IF (1)
Microsoft.Web/sites/slots
Compliance
The following 1 compliance controls are associated with this Policy definition 'App Service app slots that use Python should use a specified 'Python version'' (9c014953-ef68-4a98-82af-fd0f6b2306c8)
Control Domain Control Name MetadataId Category Title Owner Requirements Description Info Policy#
CIS_Azure_2.0.0 9.7 CIS_Azure_2.0.0_9.7 CIS Microsoft Azure Foundations Benchmark recommendation 9.7 9 Ensure that 'Python version' is the Latest Stable Version, if Used to Run the Web App Shared If your app is written using version-dependent features or libraries, they may not be available on the latest version. If you wish to upgrade, research the impact thoroughly. Upgrading may have unforeseen consequences that could result in downtime. Periodically, newer versions are released for Python software either due to security flaws or to include additional functionality. Using the latest full Python version for web apps is recommended in order to take advantage of security fixes, if any, and/or additional functionalities of the newer version. Newer versions may contain security enhancements and additional functionality. Using the latest software version is recommended in order to take advantage of enhancements and new capabilities. With each software installation, organizations need to determine if a given update meets their requirements. They must also verify the compatibility and support provided for any additional software against the update revision that is selected. Using the latest full version will keep your stack secure to vulnerabilities and exploits. link 3
Initiatives usage
Initiative DisplayName Initiative Id Initiative Category State Type
CIS Microsoft Azure Foundations Benchmark v2.0.0 06f19060-9e68-4070-92ca-f15cc126059e Regulatory Compliance GA BuiltIn
History
Date/Time (UTC ymd) (i) Change type Change detail
2023-05-01 17:41:52 add 9c014953-ef68-4a98-82af-fd0f6b2306c8
JSON compare n/a
JSON
api-version=2021-06-01
EPAC