SumoLogic · himanshu219 · Jan 24, 2024 · Jan 23, 2024 · Jan 23, 2024 · Jan 23, 2024
diff --git a/.github/workflows/arm-template-test.yml b/.github/workflows/arm-template-test.yml
@@ -0,0 +1,35 @@
+name: "ARM template tests"
+
+on: [pull_request]
+
+jobs:
+  best-practices-test:
+    name: "ARM template tests using arm-ttk"
+    runs-on: "ubuntu-latest"
+    steps:
+      - name: Checkout repo
+        uses: actions/checkout@v4
+
+      - name: Test ARM Templates using arm-ttk
+        id: filestest
+        uses: aliencube/[email protected]
+        with:
+          path: EventHubs/src/azuredeploy_metrics.json
+
+  security-test:
+    name: "ARM template tests using checkov"
+    runs-on: "ubuntu-latest"
+    steps:
+      - name: Checkout repo
+        uses: actions/checkout@v4
+
+      - name: Test ARM Templates using checkov
+        id: checkov
+        uses: bridgecrewio/checkov-action@v12
+        with:
+          file: EventHubs/src/azuredeploy_metrics.json
+          skip_check: CKV_AZURE_16,CKV_AZURE_17,CKV_AZURE_35
+          quiet: false
+          framework: arm
+          output_format: cli
+          output_bc_ids: true
diff --git a/EventHubs/src/azuredeploy_metrics.json b/EventHubs/src/azuredeploy_metrics.json
@@ -55,9 +55,9 @@
             "type": "String"
         },
         "logAnalyticsWorkspaceName": {
-			"defaultValue": "[concat('SMWorkspace', uniqueString(resourceGroup().id))]",
-			"type": "String"
-		},
+            "defaultValue": "[concat('SMWorkspace', uniqueString(resourceGroup().id))]",
+            "type": "String"
+        },
         "location": {
             "type": "string",
             "defaultValue": "[resourceGroup().location]",
@@ -281,25 +281,25 @@
             ]
         },
         {
-	      "type": "microsoft.operationalinsights/workspaces",
-	      "apiVersion": "2022-10-01",
-	      "name": "[parameters('logAnalyticsWorkspaceName')]",
-	      "location": "[parameters('location')]",
-	      "properties": {
-	        "sku": {
-	          "name": "pergb2018"
-	        },
-	        "retentionInDays": 30,
-	        "features": {
+          "type": "microsoft.operationalinsights/workspaces",
+          "apiVersion": "2022-10-01",
+          "name": "[parameters('logAnalyticsWorkspaceName')]",
+          "location": "[parameters('location')]",
+          "properties": {
+            "sku": {
+              "name": "pergb2018"
+            },
+            "retentionInDays": 30,
+            "features": {
               "enableLogAccessUsingOnlyResourcePermissions": true
-	        },
-	        "workspaceCapping": {
-	          "dailyQuotaGb": -1
-	        },
-	        "publicNetworkAccessForIngestion": "Enabled",
-	        "publicNetworkAccessForQuery": "Enabled"
-	      }
-	    },
+            },
+            "workspaceCapping": {
+              "dailyQuotaGb": -1
+            },
+            "publicNetworkAccessForIngestion": "Enabled",
+            "publicNetworkAccessForQuery": "Enabled"
+          }
+        },
         {
           "name": "[parameters('appInsightsName')]",
           "type": "Microsoft.Insights/components",
@@ -313,4 +313,4 @@
             }
         }
     ]
-}
+}