azlint

azlint

Automatically report issues with your Azure resources.

Usage

$ yarn global add azlint
$ azlint config.json

Example configuration

{
  "appId": "12345678-90ab-cdef-1234-567890abcdef",
  "secret": "Abc+123Def01234=",
  "tenant": "example.onmicrosoft.com",
  "rules": {
    "compute-usage": {
      "level": "warning",
      "percentage": 75
    },
    "lock-without-description": "warning",
    "resource-group-name": {
      "level": "info",
      "pattern": "[a-z]+-(dev|qa|prod)[0-9]+"
    },
    "vm-cpu-metrics": "warning"
  }
}

The configuration file is parsed by js-yaml, so both JSON and YAML are supported.

App registration access

To allow access to listing app registrations, go to Active Directory and select App Registration -> Permissions -> API: Windows Azure Active Directory -> Application Permissions: Directory.Read.All

Rules

• application-name: Report app registrations that don't follow the given name pattern
• compute-usage: Report resource usage that reaches a certain level for a region
• group-name: Report groups that don't follow the given name pattern
• group-members: Report when the group members do not match the expected list
• lock-without-description: Report resource locks that don't have a description
• resource-group-name: Report resource groups that don't follow the given name pattern
• resource-group-tag: Report resource groups which don't have matching tags
• resource-count: Report when unexpected resources exist or are missing
• resource-name: Report resources that don't follow the given name pattern
• test-application: Report app registrations that have been created only for testing
• test-resource-group: Report resource groups that have been created only for testing
• user-email: Report user email addresses that don't match the given pattern
• vm-cpu-metrics: Report when VM CPU usage is above or below a certain level

See also

• ms-rest-azure
• Azure Node SDK

License

MIT