Skip to content

query(Terraform): false negatives for App Service FTPS Enforce Disabled #7719

New issue
New issue
Open
#7722
Open
query(Terraform): false negatives for App Service FTPS Enforce Disabled#7719
#7722
Labels
azurePR related with Azure CloudcommunityCommunity contributionqueryNew query featureterraformTerraform query
@tplisson

Description

@tplisson
tplisson
opened on Sep 16, 2025

Platform

Terraform

Provider

Azure

Description

False negatives for App Service FTPS Enforce Disabled

KICS lacks support for latest Terraform resources: azurerm_linux_web_app and azurerm_windows_web_app. Only legacy resource azurerm_app_service is taken into account, although it is now outdated and deprecated since version 3.0 of the AzureRM provider.
Would suggest updating this query to detect FTP vulnerability or misconfiguration for both azurerm_linux_web_app and azurerm_windows_web_app resources.

Metadata

Metadata

Assignees

No one assigned

    Labels

    azurePR related with Azure CloudcommunityCommunity contributionqueryNew query featureterraformTerraform query

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions