May 11, 2026, Conformity: A summary of Trend Cloud One Conformity updates for the week ending on 8 May 2026.
New Rules
Azure
-
ContainerApps-003: Disable Public Network Access: This rule ensures that public network access to Azure Container Apps is disabled.
-
ContainerApps-006: Enable Authentication and Authorization with Microsoft Entra ID: This rule ensures that authentication and authorization with Microsoft Entra ID is enabled for Azure Container Apps.
-
ContainerApps-008: Enable and Configure Azure Container Apps Resiliency: This rule ensures that Azure Container Apps resiliency is enabled and configured using resiliency policies.
AWS
-
DynamoDB-008: Enable Auto Scaling: This rule ensures that DynamoDB Auto Scaling is enabled to automate capacity management for tables and indexes.
-
BedrockAgentCore-004: Configure Policy Engine for AgentCore Gateway: This rule ensures that a policy engine is configured on Amazon Bedrock AgentCore gateways to enforce guardrail policies on tool invocations.
-
BedrockAgentCore-006: Enable Authorization on AgentCore Gateways: This rule ensures that authorization is enabled on Amazon Bedrock AgentCore gateways to prevent unauthenticated access.
-
BedrockAgentCore-007: Use Customer-Managed Keys to Encrypt AgentCore Gateways: This rule ensures that your Amazon Bedrock AgentCore gateways are encrypted with AWS KMS Customer-Managed Keys (CMKs) instead of service-managed AWS managed keys.
-
BedrockAgentCore-008: Use Customer-Managed Keys to Encrypt AgentCore Memory: This rule ensures that your Amazon Bedrock AgentCore memory stores are encrypted with Customer-Managed Keys (CMKs) instead of AWS managed keys.