--- inputType: "CA10__CaAzureKeyVault__c" testData: - file: "test-data.json" conditions: - status: "INCOMPLIANT" currentStateMessage: "The Key Vault does not use a private endpoint." remediationMessage: "Use a private endpoint for the Key Vault to restrict access to approved sources." check: RELATED_LIST_HAS: status: "INCOMPLIANT" relationshipName: "CA10Z1__Azure_Private_Endpoint_Connections__r" - status: "COMPLIANT" currentStateMessage: "The Key Vault uses a private endpoint." check: RELATED_LIST_HAS: status: "COMPLIANT" relationshipName: "CA10Z1__Azure_Private_Endpoint_Connections__r" - status: "UNDETERMINED" currentStateMessage: "Unable to determine the private endpoint status." check: RELATED_LIST_HAS: status: "UNDETERMINED" relationshipName: "CA10Z1__Azure_Private_Endpoint_Connections__r" otherwise: status: "INCOMPLIANT" currentStateMessage: "The Key Vault does not use a private endpoint." remediationMessage: "Use a private endpoint for the Key Vault to restrict access to approved sources." relatedLists: - relationshipName: "CA10Z1__Azure_Private_Endpoint_Connections__r" recordTypes: - "privateEndpointConnectionKeyVault" importExtracts: - file: "/types/CA10Z1__CaAzurePrivateEndpointConnection__c/object.extracts.yaml" conditions: - status: "INCOMPLIANT" currentStateMessage: "No private endpoint exists for the Key Vault." remediationMessage: "Create a private endpoint." check: IS_EMPTY_LOOKUP: "CA10Z1__privateEndpoint__r" - status: "INCOMPLIANT" currentStateMessage: "The private endpoint connection is not approved." remediationMessage: "Approve the private endpoint connection." check: NOT_EQUAL: left: EXTRACT: "CA10Z1__serviceConnectionStatus__c" right: TEXT: "Approved" - status: "COMPLIANT" currentStateMessage: "The private endpoint connection is approved." check: IS_EQUAL: left: EXTRACT: "CA10Z1__serviceConnectionStatus__c" right: TEXT: "Approved" otherwise: status: "UNDETERMINED" currentStateMessage: "Unexpected value in the field."