From fb561721c769d91c31f1c6f387091141bcab2286 Mon Sep 17 00:00:00 2001
From: Seif Bassem <38246040+sebassem@users.noreply.github.com>
Date: Sun, 21 Apr 2024 22:15:19 +0200
Subject: [PATCH] feat: Added custom Azure storage replication rule and updated
 ps-rule (#1725)

---
 .../psrule/.ps-rule/custom-rules.Rule.yaml         | 14 ++++++++++++++
 .../pipelines/staticValidation/psrule/ps-rule.yaml |  3 ++-
 2 files changed, 16 insertions(+), 1 deletion(-)
 create mode 100644 avm/utilities/pipelines/staticValidation/psrule/.ps-rule/custom-rules.Rule.yaml

diff --git a/avm/utilities/pipelines/staticValidation/psrule/.ps-rule/custom-rules.Rule.yaml b/avm/utilities/pipelines/staticValidation/psrule/.ps-rule/custom-rules.Rule.yaml
new file mode 100644
index 0000000000..c3bb28aae8
--- /dev/null
+++ b/avm/utilities/pipelines/staticValidation/psrule/.ps-rule/custom-rules.Rule.yaml
@@ -0,0 +1,14 @@
+# Synopsis: Use a zone or geo redundant storage account
+apiVersion: github.com/microsoft/PSRule/v1
+kind: Rule
+metadata:
+  name: 'Custom.Azure.Storage.UseReplication'
+spec:
+  type:
+  - Microsoft.Storage/storageAccounts
+  condition:
+    anyOf:
+      - field: 'Sku.name'
+        contains: 'ZRS'
+      - field: 'Sku.name'
+        contains: 'GRS'
diff --git a/avm/utilities/pipelines/staticValidation/psrule/ps-rule.yaml b/avm/utilities/pipelines/staticValidation/psrule/ps-rule.yaml
index f5bc660b72..b241ac0b1a 100644
--- a/avm/utilities/pipelines/staticValidation/psrule/ps-rule.yaml
+++ b/avm/utilities/pipelines/staticValidation/psrule/ps-rule.yaml
@@ -74,8 +74,9 @@ configuration:
 
 rule:
   # Enable custom rules that don't exist in the baseline
-  includeLocal: false
+  includeLocal: true
   exclude:
     # Ignore the following rules for all resources
     - Azure.KeyVault.PurgeProtect
     - Azure.VM.UseHybridUseBenefit
+    - Azure.Storage.UseReplication