{"id":15291262,"url":"https://github.com/azure/alz-powershell-module","last_synced_at":"2026-04-02T14:02:38.012Z","repository":{"id":148760175,"uuid":"608612485","full_name":"Azure/ALZ-PowerShell-Module","owner":"Azure","description":"The Azure Landing Zones Accelerators PowerShell module","archived":false,"fork":false,"pushed_at":"2026-03-26T17:01:01.000Z","size":4328,"stargazers_count":110,"open_issues_count":4,"forks_count":52,"subscribers_count":12,"default_branch":"main","last_synced_at":"2026-03-26T18:42:07.858Z","etag":null,"topics":["accelerator","azure","azure-devops","azure-landing-zones","bicep","github-actions","landing-zone","terraform"],"latest_commit_sha":null,"homepage":"https://www.powershellgallery.com/packages/ALZ/","language":"PowerShell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/Azure.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":"SUPPORT.md","governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2023-03-02T11:34:32.000Z","updated_at":"2026-03-26T10:42:04.000Z","dependencies_parsed_at":null,"dependency_job_id":"4f7f6e7e-b161-41ed-b58d-0f1cb1dd6084","html_url":"https://github.com/Azure/ALZ-PowerShell-Module","commit_stats":{"total_commits":65,"total_committers":12,"mean_commits":5.416666666666667,"dds":0.7692307692307692,"last_synced_commit":"41a7a1617aa7e905f9efa4222f0a23581a349f2e"},"previous_names":[],"tags_count":190,"template":false,"template_full_name":null,"purl":"pkg:github/Azure/ALZ-PowerShell-Module","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2FALZ-PowerShell-Module","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2FALZ-PowerShell-Module/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2FALZ-PowerShell-Module/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2FALZ-PowerShell-Module/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/Azure","download_url":"https://codeload.github.com/Azure/ALZ-PowerShell-Module/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/Azure%2FALZ-PowerShell-Module/sbom","scorecard":{"id":1239729,"data":{"date":"2025-11-11T23:22:12Z","repo":{"name":"github.com/Azure/ALZ-PowerShell-Module","commit":"f714ed9ec537480862dd27c53ef4e48ad0ed61d8"},"scorecard":{"version":"v4.13.1","commit":"49c0eed3a423f00c872b5c3c9f1bbca9e8aae799"},"score":7,"checks":[{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#binary-artifacts"}},{"name":"Branch-Protection","score":6,"reason":"branch protection is not maximal on development and all release branches","details":["Info: 'force pushes' disabled on branch 'main'","Info: 'allow deletion' disabled on branch 'main'","Info: 'last push approval' enabled on branch 'main'","Warn: no status checks found to merge onto branch 'main'","Warn: number of required reviewers is only 1 on branch 'main'","Warn: settings do not apply to administrators on branch 'main'","Info: codeowner review is required on branch 'main'","Warn: codeowners branch protection is being ignored - but no codeowners file found in repo"],"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#branch-protection"}},{"name":"CI-Tests","score":10,"reason":"30 out of 30 merged PRs checked by a CI test -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project runs tests before pull requests are merged.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#ci-tests"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#cii-best-practices"}},{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#code-review"}},{"name":"Contributors","score":10,"reason":"6 different organizations found -- score normalized to 10","details":["Info: contributors work for Azure,Azure-Samples,guy inc,microsoft,microsoft @azure,msmvps"],"documentation":{"short":"Determines if the project has a set of contributors from multiple organizations (e.g., companies).","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#contributors"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#dangerous-workflow"}},{"name":"Dependency-Update-Tool","score":10,"reason":"update tool detected","details":["Info: tool 'Dependabot' is used: .github/dependabot.yml:1"],"documentation":{"short":"Determines if the project uses a dependency update tool.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#dependency-update-tool"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no OSSFuzz integration found: Follow the steps in https://github.com/google/oss-fuzz to integrate fuzzing for your project.\nOver time, try to add fuzzing for more functionalities of your project. (High effort)","Warn: no OneFuzz integration found: Follow the steps in https://github.com/microsoft/onefuzz to start fuzzing for your project.\nOver time, try to add fuzzing for more functionalities of your project. (High effort)","Warn: no GoBuiltInFuzzer integration found: Follow the steps in https://go.dev/doc/fuzz/ to enable fuzzing on your project.\nOver time, try to add fuzzing for more functionalities of your project. (Medium effort)","Warn: no PythonAtherisFuzzer integration found: Follow the steps in https://github.com/google/atheris to enable fuzzing on your project.\nOver time, try to add fuzzing for more functionalities of your project. (Medium effort)","Warn: no CLibFuzzer integration found: Follow the steps in https://llvm.org/docs/LibFuzzer.html to enable fuzzing on your project.\nOver time, try to add fuzzing for more functionalities of your project. (Medium effort)","Warn: no CppLibFuzzer integration found: Follow the steps in https://llvm.org/docs/LibFuzzer.html to enable fuzzing on your project.\nOver time, try to add fuzzing for more functionalities of your project. (Medium effort)","Warn: no SwiftLibFuzzer integration found: Follow the steps in https://google.github.io/oss-fuzz/getting-started/new-project-guide/swift-lang/ to enable fuzzing on your project.\nOver time, try to add fuzzing for more functionalities of your project. (Medium effort)","Warn: no RustCargoFuzzer integration found: Follow the steps in https://rust-fuzz.github.io/book/cargo-fuzz.html to enable fuzzing on your project.\nOver time, try to add fuzzing for more functionalities of your project. (Medium effort)","Warn: no JavaJazzerFuzzer integration found: Follow the steps in https://github.com/CodeIntelligenceTesting/jazzer to enable fuzzing on your project.\nOver time, try to add fuzzing for more functionalities of your project. (Medium effort)","Warn: no ClusterFuzzLite integration found: Follow the steps in https://github.com/google/clusterfuzzlite to integrate fuzzing as part of CI.\nOver time, try to add fuzzing for more functionalities of your project. (High effort)","Warn: no HaskellPropertyBasedTesting integration found: Use one of the following frameworks to fuzz your project:\nQuickCheck: https://hackage.haskell.org/package/QuickCheck\nhedgehog: https://hedgehog.qa/\nvalidity: https://github.com/NorfairKing/validity\nsmallcheck: https://hackage.haskell.org/package/smallcheck\nhspec: https://hspec.github.io/\ntasty: https://hackage.haskell.org/package/tasty (High effort)","Warn: no TypeScriptPropertyBasedTesting integration found: Use fast-check: https://github.com/dubzzz/fast-check (High effort)","Warn: no JavaScriptPropertyBasedTesting integration found: Use fast-check: https://github.com/dubzzz/fast-check (High effort)"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: License file found in expected location: LICENSE:1","Info: FSF or OSI recognized license: LICENSE:1"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#license"}},{"name":"Maintained","score":10,"reason":"6 commit(s) out of 30 and 24 issue activity out of 30 found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#maintained"}},{"name":"Packaging","score":-1,"reason":"no published package detected","details":["Warn: no GitHub/GitLab publishing workflow detected"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#packaging"}},{"name":"Pinned-Dependencies","score":10,"reason":"all dependencies are pinned","details":["Info:  18 out of  18 GitHub-owned GitHubAction dependencies pinned","Info:   9 out of   9 third-party GitHubAction dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#pinned-dependencies"}},{"name":"SAST","score":2,"reason":"SAST tool is not run on all commits -- score normalized to 2","details":["Warn: 6 commits out of 30 are checked with a SAST tool","Warn: CodeQL tool not detected"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#sast"}},{"name":"Security-Policy","score":10,"reason":"security policy file detected","details":["Info: security policy file detected: SECURITY.md:1","Info: Found linked content: SECURITY.md:1","Info: Found disclosure, vulnerability, and/or timelines in security policy: SECURITY.md:1","Info: Found text in security policy: SECURITY.md:1"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#security-policy"}},{"name":"Signed-Releases","score":0,"reason":"0 out of 5 artifacts are signed or have provenance","details":["Warn: release artifact 4.2.11-alpha does not have provenance: https://api.github.com/repos/Azure/ALZ-PowerShell-Module/releases/228708880","Warn: release artifact 4.2.11-alpha not signed: https://api.github.com/repos/Azure/ALZ-PowerShell-Module/releases/228708880","Warn: release artifact 4.2.9 does not have provenance: https://api.github.com/repos/Azure/ALZ-PowerShell-Module/releases/220595273","Warn: release artifact 4.2.9 not signed: https://api.github.com/repos/Azure/ALZ-PowerShell-Module/releases/220595273","Warn: release artifact 4.2.9-alpha does not have provenance: https://api.github.com/repos/Azure/ALZ-PowerShell-Module/releases/220595235","Warn: release artifact 4.2.9-alpha not signed: https://api.github.com/repos/Azure/ALZ-PowerShell-Module/releases/220595235","Warn: release artifact 4.2.8 does not have provenance: https://api.github.com/repos/Azure/ALZ-PowerShell-Module/releases/219725627","Warn: release artifact 4.2.8 not signed: https://api.github.com/repos/Azure/ALZ-PowerShell-Module/releases/219725627","Warn: release artifact 4.2.8-alpha does not have provenance: https://api.github.com/repos/Azure/ALZ-PowerShell-Module/releases/219725499","Warn: release artifact 4.2.8-alpha not signed: https://api.github.com/repos/Azure/ALZ-PowerShell-Module/releases/219725499"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#signed-releases"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Info: topLevel 'contents' permission set to 'read': .github/workflows/Prerelease.yml:11","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/Prerelease.yml:17: Verify which permissions are needed and consider whether you can reduce them. (High effort)","Warn: no topLevel permission defined: .github/workflows/PullRequest.yml:1: Visit https://app.stepsecurity.io/secureworkflow/Azure/ALZ-PowerShell-Module/PullRequest.yml/main?enable=permissions\nTick the 'Restrict permissions for GITHUB_TOKEN'\nUntick other options\nNOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead. (Low effort)","Info: topLevel 'contents' permission set to 'read': .github/workflows/Release.yml:8","Warn: jobLevel 'contents' permission set to 'write': .github/workflows/Release.yml:14: Verify which permissions are needed and consider whether you can reduce them. (High effort)","Warn: no topLevel permission defined: .github/workflows/pr-labeler.yml:1: Visit https://app.stepsecurity.io/secureworkflow/Azure/ALZ-PowerShell-Module/pr-labeler.yml/main?enable=permissions\nTick the 'Restrict permissions for GITHUB_TOKEN'\nUntick other options\nNOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead. (Low effort)","Info: jobLevel 'contents' permission set to 'read': .github/workflows/pr-labeler.yml:12","Warn: no topLevel permission defined: .github/workflows/pr-title-check.yml:1: Visit https://app.stepsecurity.io/secureworkflow/Azure/ALZ-PowerShell-Module/pr-title-check.yml/main?enable=permissions\nTick the 'Restrict permissions for GITHUB_TOKEN'\nUntick other options\nNOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead. (Low effort)","Info: topLevel permissions set to 'read-all': .github/workflows/scorecard.yml:19","Warn: no topLevel permission defined: .github/workflows/super-linter.yml:1: Visit https://app.stepsecurity.io/secureworkflow/Azure/ALZ-PowerShell-Module/super-linter.yml/main?enable=permissions\nTick the 'Restrict permissions for GITHUB_TOKEN'\nUntick other options\nNOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead. (Low effort)","Warn: topLevel 'contents' permission set to 'write': .github/workflows/wiki-sync.yml:5: Visit https://app.stepsecurity.io/secureworkflow/Azure/ALZ-PowerShell-Module/wiki-sync.yml/main?enable=permissions\nTick the 'Restrict permissions for GITHUB_TOKEN'\nUntick other options\nNOTE: If you want to resolve multiple issues at once, you can visit https://app.stepsecurity.io/securerepo instead. (Low effort)"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#token-permissions"}},{"name":"Vulnerabilities","score":10,"reason":"no vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/49c0eed3a423f00c872b5c3c9f1bbca9e8aae799/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-11-14T08:30:39.591Z","repository_id":148760175,"created_at":"2025-11-14T08:30:39.591Z","updated_at":"2025-11-14T08:30:39.591Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31307465,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-02T12:59:32.332Z","status":"ssl_error","status_checked_at":"2026-04-02T12:54:48.875Z","response_time":89,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["accelerator","azure","azure-devops","azure-landing-zones","bicep","github-actions","landing-zone","terraform"],"created_at":"2024-09-30T16:11:42.977Z","updated_at":"2026-04-02T14:02:37.976Z","avatar_url":"https://github.com/Azure.png","language":"PowerShell","funding_links":[],"categories":[],"sub_categories":[],"readme":"# Azure Landing Zones Accelerators for Bicep and Terraform\r\n\r\n[![license](https://img.shields.io/badge/License-MIT-purple.svg)](LICENSE)\r\n[![OpenSSF Scorecard](https://api.scorecard.dev/projects/github.com/Azure/ALZ-PowerShell-Module/badge)](https://scorecard.dev/viewer/?uri=github.com/Azure/ALZ-PowerShell-Module)\r\n![GitHub release (latest SemVer)](https://img.shields.io/github/v/release/Azure/ALZ-PowerShell-Module?style=flat\u0026logo=github)\r\n![GitHub closed pull requests](https://img.shields.io/github/issues-pr-closed/Azure/ALZ-PowerShell-Module)\r\n![GitHub contributors](https://img.shields.io/github/contributors/Azure/ALZ-PowerShell-Module)\r\n\r\n## Introduction\r\n\r\nThis repository contains the PowerShell module and documentation for the Azure landing zones Accelerators for Bicep and Terraform. The accelerators are an opinionated implementation of the Azure Landing Zones modules, with Azure DevOps or GitHub bootstrapping.\r\n\r\n## Supported Infrastructure as Code (IaC) Types\r\n\r\nThe accelerators support multiple Infrastructure as Code approaches:\r\n\r\n- **terraform**: Terraform-based Azure Landing Zones\r\n- **bicep**: Bicep-based Azure Landing Zones using the new [alz-bicep-accelerator](https://github.com/Azure/alz-bicep-accelerator) framework built on Azure Verified Modules\r\n- **bicep-classic**: Bicep-based Azure Landing Zones using the classic [ALZ-Bicep](https://github.com/Azure/ALZ-Bicep) framework\r\n\r\nIt is designed to be used as a template to enable you to get started quickly deploying ALZ with any of these approaches.\r\n\r\nPlease refer to our [Docs](https://aka.ms/alz/acc) for detailed features and usage instructions.\r\n\r\n## Quick Start\r\n\r\nTo get going right now, run these PowerShell steps:\r\n\r\n```pwsh\r\nInstall-Module -Name ALZ\r\nDeploy-Accelerator -inputs \"inputs.yaml\"\r\n```\r\n\r\n## Software Requirements\r\n\r\nYou can see the software requirements for the ALZ Accelerators in the [Phase 1 Docs](https://aka.ms/alz/acc/phase1).\r\n\r\nTo check the requirements, run these commands:\r\n\r\n```pwsh\r\nInstall-Module -Name ALZ\r\nTest-AcceleratorRequirement\r\n```\r\n\r\n## Contributing\r\n\r\nThis project welcomes contributions and suggestions.  Most contributions require you to agree to a\r\nContributor License Agreement (CLA) declaring that you have the right to, and actually do, grant us\r\nthe rights to use your contribution. For details, visit [https://cla.opensource.microsoft.com](https://cla.opensource.microsoft.com).\r\n\r\nWhen you submit a pull request, a CLA bot will automatically determine whether you need to provide\r\na CLA and decorate the PR appropriately (e.g., status check, comment). Simply follow the instructions\r\nprovided by the bot. You will only need to do this once across all repos using our CLA.\r\n\r\nThis project has adopted the [Microsoft Open Source Code of Conduct](https://opensource.microsoft.com/codeofconduct/).\r\nFor more information see the [Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/) or\r\ncontact [opencode@microsoft.com](mailto:opencode@microsoft.com) with any additional questions or comments.\r\n\r\n## Trademarks\r\n\r\nThis project may contain trademarks or logos for projects, products, or services. Authorized use of Microsoft\r\ntrademarks or logos is subject to and must follow\r\n[Microsoft's Trademark \u0026 Brand Guidelines](https://www.microsoft.com/legal/intellectualproperty/trademarks/usage/general).\r\nUse of Microsoft trademarks or logos in modified versions of this project must not cause confusion or imply Microsoft sponsorship.\r\nAny use of third-party trademarks or logos are subject to those third-party's policies.\r\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fazure%2Falz-powershell-module","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fazure%2Falz-powershell-module","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fazure%2Falz-powershell-module/lists"}