Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Microsoft Defender for Cloud's integration with Microsoft Security Copilot lets you remediate Infrastructure as Code (IaC) misconfigurations in your code repositories. Remediating IaC findings with Copilot lets you address security misconfigurations and vulnerabilities early in the development cycle by automatically generating Pull Requests (PRs) that correct the identified weaknesses. This remediation ensures that security issues in code are addressed accurately and promptly.
Prerequisites
- Enable Defender for Cloud on your environment.
- Connect your Azure DevOps environment to Defender for Cloud.
- Configure the Microsoft Security DevOps Azure DevOps extension.
- Review and ensure you meet the DevOps security support and prerequisites requirements.
- Have access to Azure Copilot.
- Have Security Compute Units assigned for Microsoft Security Copilot.
Remediate an Infrastructure as Code scanning finding
With Microsoft Security Copilot, in Defender for Cloud you can remediate recommendations.
Sign in to the Azure portal.
Search for and select Microsoft Defender for Cloud.
Navigate to Recommendations.
Search for and select the Azure DevOps repositories should have infrastructure as code scanning findings resolved recommendation.
Select Reduce risk with Copilot.
Select Help me remediate this recommendation.
Select security check.
Select the appropriate description.
Select Select.
Review the summary of the code fix.
Select Submit.
Select the provided link.
Review the pull request.
Once the pull request is generated in your code repository, a developer should review and approve the pull request for merging into the code base.