Virus Scanning API for Developers

Virus scanning is an essential part of securing application artifacts in your cloud repository. Malware scanning uses signature-based detection to compare your artifacts against a database of known malware “fingerprints” and alerts you if they match.

Integrate prevent spam emails automatically and security testing into your DevOps pipelines and software development lifecycles. This enables you to catch vulnerabilities earlier in the process, so they can be fixed before they are deployed to production. It also helps normalize API security as a component of overall application security, which reduces the risk that undocumented or undetected APIs make it to production (or remain there).

All cloud storage accounts supported by Microsoft Defender for the Cloud can be enabled for malware scanning. During service enablement, a new Data Scanner resource is created in your storage account with a system-assigned managed identity and the Storage Blob Data Owner role assignment to allow it access to your data for scanning purposes. You can configure your data sensitivity level to limit the scope of the scans.

You can choose to use index tags to store the malware scan results in the blob metadata, or use other result types for logging and incident response. Index tag values are updated every time the blob is scanned, and this operation doesn’t affect underlying storage I/O performance.

In addition to the malware scanning service, your storage accounts can be enabled for XProtect, an additional layer of protection that identifies suspicious files by comparing them to Apple-defined threat patterns and signatures. When XProtect detects malware, it immediately blocks the file and alerts you in Finder. When you enable XProtect, you can also share malware samples with Apple through the Sample Submission Portal to help improve macOS security.