Create Security Suite baseline

PowerShell/ScubaGear/Rego/TeamsConfig.rego

@@ -1,7 +1,6 @@
 package teams
 import rego.v1
 import data.utils.report.ReportDetailsBoolean
-import data.utils.report.DefenderMirrorDetails
 import data.utils.report.ReportDetailsArray
 import data.utils.report.CheckedSkippedDetails
 import data.utils.key.FilterArray
@@ -563,19 +562,19 @@ tests contains {
 } if {
     Policies := PoliciesBlockingDefaultApps
     LegacyCompliant := count(Policies) == 0
-    
+
     # Determine compliance based on what's available
     Status := GetDefaultAppComplianceStatus(LegacyCompliant)
-    
+
     # Build detailed report
     LegacyDetails := ReportDetailsArray(LegacyCompliant, Policies, concat("", [
         "app permission policy(ies) found that does not restrict installation of ",
         "Microsoft Apps by default:"
     ]))
-    
+
     # Determine tenant details based on setting state
     TenantDetails := GetDefaultAppTenantDetails
-    
+
     # Use helper function to build details with proper prioritization
     Details := BuildDefaultAppDetails(DefaultAppSettingValue, TenantDetails, LegacyDetails, LegacyCompliant)
 }
@@ -731,19 +730,19 @@ tests contains {
 } if {
     Policies := PoliciesAllowingGlobalApps
     LegacyCompliant := count(Policies) == 0
-    
+
     # Determine compliance based on what's available
     Status := GetGlobalAppComplianceStatus(LegacyCompliant)
-    
+
     # Build detailed report
     LegacyDetails := ReportDetailsArray(LegacyCompliant, Policies, concat("", [
         "app permission policy(ies) found that does not restrict installation of ",
         "third-party apps by default:"
     ]))
-    
+
     # Determine tenant details based on setting state
     TenantDetails := GetGlobalAppTenantDetails
-    
+
     # Use helper function to build details with proper prioritization
     Details := BuildGlobalAppDetails(GlobalAppSettingValue, TenantDetails, LegacyDetails, LegacyCompliant)
 }
@@ -899,19 +898,19 @@ tests contains {
 } if {
     Policies := PoliciesAllowingCustomApps
     LegacyCompliant := count(Policies) == 0
-    
+
     # Determine compliance based on what's available
     Status := GetPrivateAppComplianceStatus(LegacyCompliant)
-    
+
     # Build detailed report
     LegacyDetails := ReportDetailsArray(LegacyCompliant, Policies, concat("", [
         "app permission policy(ies) found that does not restrict installation of ",
         "custom apps by default:"
     ]))
-    
+
     # Determine tenant details based on setting state
     TenantDetails := GetPrivateAppTenantDetails
-    
+
     # Use helper function to build details with proper prioritization
     Details := BuildPrivateAppDetails(PrivateAppSettingValue, TenantDetails, LegacyDetails, LegacyCompliant)
 }
@@ -995,108 +994,3 @@ GetPrivateAppTenantDetails := concat("", [
     PrivateAppSettingValue == "Not Checked"
 }
 #--
-
-
-##############
-# MS.TEAMS.6 #
-##############
-
-#
-# MS.TEAMS.6.1v1
-#--
-
-# At this time we are unable to test because settings are configured in M365 Defender or using a third-party app
-tests contains {
-    "PolicyId": "MS.TEAMS.6.1v1",
-    "Criticality": "Shall/3rd Party",
-    "Commandlet": [],
-    "ActualValue": [],
-    "ReportDetails": DefenderMirrorDetails("MS.TEAMS.6.1v1"),
-    "RequirementMet": false
-}
-#--
-
-#
-# MS.TEAMS.6.2v1
-#--
-
-# At this time we are unable to test because settings are configured in M365 Defender or using a third-party app
-tests contains {
-    "PolicyId": "MS.TEAMS.6.2v1",
-    "Criticality": "Shall/3rd Party",
-    "Commandlet": [],
-    "ActualValue": [],
-    "ReportDetails": DefenderMirrorDetails("MS.TEAMS.6.2v1"),
-    "RequirementMet": false
-}
-#--
-
-
-##############
-# MS.TEAMS.7 #
-##############
-
-#
-# MS.TEAMS.7.1v1
-#--
-
-# At this time we are unable to test because settings are configured in M365 Defender or using a third-party app
-tests contains {
-    "PolicyId": "MS.TEAMS.7.1v1",
-    "Criticality": "Should/3rd Party",
-    "Commandlet": [],
-    "ActualValue": [],
-    "ReportDetails": DefenderMirrorDetails("MS.TEAMS.7.1v1"),
-    "RequirementMet": false
-}
-#--
-
-#
-# MS.TEAMS.7.2v1
-#--
-
-# At this time we are unable to test because settings are configured in M365 Defender or using a third-party app
-tests contains {
-    "PolicyId": "MS.TEAMS.7.2v1",
-    "Criticality": "Should/3rd Party",
-    "Commandlet": [],
-    "ActualValue": [],
-    "ReportDetails": DefenderMirrorDetails("MS.TEAMS.7.2v1"),
-    "RequirementMet": false
-}
-#--
-
-
-##############
-# MS.TEAMS.8 #
-##############
-
-#
-# MS.TEAMS.8.1v1
-#--
-
-# At this time we are unable to test because settings are configured in M365 Defender or using a third-party app
-tests contains {
-    "PolicyId": "MS.TEAMS.8.1v1",
-    "Criticality": "Should/3rd Party",
-    "Commandlet": [],
-    "ActualValue": [],
-    "ReportDetails": DefenderMirrorDetails("MS.TEAMS.8.1v1"),
-    "RequirementMet": false
-}
-#--
-
-#
-# MS.TEAMS.8.2v1
-#--
-
-# At this time we are unable to test because settings are configured in M365 Defender or using a third-party app
-tests contains {
-    "PolicyId": "MS.TEAMS.8.2v1",
-    "Criticality": "Should/3rd Party",
-    "Commandlet": [],
-    "ActualValue": [],
-    "ReportDetails": DefenderMirrorDetails("MS.TEAMS.8.2v1"),
-    "RequirementMet": false
-}
-#--

PowerShell/ScubaGear/Testing/Unit/PowerShell/CreateReport/New-Report.Tests.ps1

@@ -46,7 +46,7 @@ InModuleScope CreateReport {
             @{Product = 'exo'; WarningCount = 0},
             @{Product = 'powerplatform'; WarningCount = 3},
             @{Product = 'sharepoint'; WarningCount = 0},
-            @{Product = 'teams'; WarningCount = 14} 
+            @{Product = 'teams'; WarningCount = 12}
         ){
             $CreateReportParams += @{
                 'BaselineName'    = $ArgToProd[$Product];