Azure · arthurclares · Sep 15, 2025 · May 21, 2025 · May 21, 2025 · May 23, 2025
@@ -1,2 +1,11 @@
-// cannot-be-validated-with-arg
+// Azure Resource Graph Query
+// Detects AKS clusters (Microsoft.ContainerService/managedClusters) where one or more of the CSI drivers (disk, file, blob) are not enabled.
+// This matches the recommendation to upgrade persistent volumes using in-tree drivers to Azure CSI drivers.
+
+resources
+| where type =~ 'Microsoft.ContainerService/managedClusters'
+| where properties.storageProfile.diskCSIDriver.enabled != true or
+        properties.storageProfile.fileCSIDriver.enabled != true or
+        properties.storageProfile.blobCSIDriver.enabled != true
+| project recommendationId = 'b002c030-72e6-4a37-8217-1cb276c43169', name, id, tags
 
@@ -128,7 +128,7 @@
     From Kubernetes 1.26, Azure Disk and Azure File in-tree drivers are deprecated in favor of CSI drivers. Existing deployments remain operational but untested; users should switch to CSI drivers for new features and SKUs.
   potentialBenefits: Ensures future compatibility
   pgVerified: true
-  automationAvailable: false
+  automationAvailable: true
   tags: []
   learnMoreLink:
     - name: CSI Storage Drivers