policy/Azure-Proactive-Resiliency-Library-v2/azurerm/loadbalancer/azurerm_lb_outbound_rule.rego (6 lines of code) (raw):
package Azure_Proactive_Resiliency_Library_v2
import rego.v1
deny_use_nat_gateway_instead_of_outbound_rules_for_production_load_lalancer contains reason if {
resource := data.utils.resource(input, "azurerm_lb_outbound_rule")[_]
reason := sprintf("Azure-Proactive-Resiliency-Library-v2/use_nat_gateway_instead_of_outbound_rules_for_production_load_lalancer: '%s' `azurerm_lb_outbound_rule` must not be used for production workloads: https://azure.github.io/Azure-Proactive-Resiliency-Library-v2/azure-resources/Network/loadBalancers/#use-nat-gateway-instead-of-outbound-rules-for-production-workloads", [resource.address])
}