fix(queries): fixed fp for trusted_microsoft_services_not_enabled and default_azure_storage_account_network_access_is_too_permissive

[cx-ricardo-jesus]

Closes #

Reason for Proposed Changes

• Currently, for the query "Trusted Microsoft Services Not Enabled", when a network_rules is not defined, it returns a positive result but that should not happen when the resource is a function app (i.e., tag bdo-attached-service set to "function") for the azurerm_storage_account.
• The same applies to the query "Default Azure Storage Account Network Access Is Too Permissive", but when the field public_network_access_enabled is set to true.

Proposed Changes

• For the query "Trusted Microsoft Services Not Enabled", I only added an extra verification using a helper function called is_function_app that checks if a resource is a function app by checking the tags.
• That helper function covers the cases when the tags field is an object or in HCL format using a regex.
• For the query "Default Azure Storage Account Network Access Is Too Permissive", I did the same with the same helper function, but, just added the verification (not is_function_app(resource)) before returning a positive result when the field public_network_access_enabled is set to true.
• Added samples for "Trusted Microsoft Services Not Enabled" that cover the extra case and some cases that were not covered before.
• Added a negative sample for "Default Azure Storage Account Network Access Is Too Permissive" that covers the case which returned a positive result before the changes on the query.

I submit this contribution under the Apache-2.0 license.

[github-actions]

KICS version: v2.1.11

Category Results CRITICAL 0 HIGH 0 MEDIUM 0 LOW 0 INFO 0 TRACE 0 TOTAL 0	Metric Values Files scanned 1 Files parsed 1 Files failed to scan 0 Total executed queries 47 Queries failed to execute 0 Execution time 0