fix(iam): handle UnboundLocalError cannot access local variable 'report' (#7370)

Co-authored-by: Daniel Barranquero <74871504+danibarranqueroo@users.noreply.github.com>
This commit is contained in:
Prowler Bot
2025-03-25 10:20:49 +01:00
committed by GitHub
parent 8e264313bc
commit 2a4fdff827
2 changed files with 23 additions and 1 deletions
@@ -29,5 +29,5 @@ class iam_custom_role_has_permissions_to_administer_resource_locks(Check):
report.status_extended = f"Role {custom_role.name} from subscription {subscription} has permission to administer resource locks."
exits_role_with_permission_over_locks = True
break
findings.append(report)
findings.append(report)
return findings
@@ -186,3 +186,25 @@ class Test_iam_custom_role_has_permissions_to_administer_resource_locks:
result[0].resource_id
== defender_client.custom_roles[AZURE_SUBSCRIPTION_ID][0].id
)
def test_iam_custom_roles_empty_list_but_with_key(self):
defender_client = mock.MagicMock
defender_client.custom_roles = {AZURE_SUBSCRIPTION_ID: []}
with (
mock.patch(
"prowler.providers.common.provider.Provider.get_global_provider",
return_value=set_mocked_azure_provider(),
),
mock.patch(
"prowler.providers.azure.services.iam.iam_custom_role_has_permissions_to_administer_resource_locks.iam_custom_role_has_permissions_to_administer_resource_locks.iam_client",
new=defender_client,
),
):
from prowler.providers.azure.services.iam.iam_custom_role_has_permissions_to_administer_resource_locks.iam_custom_role_has_permissions_to_administer_resource_locks import (
iam_custom_role_has_permissions_to_administer_resource_locks,
)
check = iam_custom_role_has_permissions_to_administer_resource_locks()
result = check.execute()
assert len(result) == 0