Security requirements to upload an excel file to a cloud blob storage
I want an authenticated user to upload an excel file to our web application. The Excel file will be parsed to generate structure.
Security is important, so we'll need to prove that we follow best practices. However, the file will be uploaded only to Blob Storage (Azure) and we will parse it with dot net libraries.
I feel that most of the security vulnerabilities and best practices described by owasp here https://cheatsheetseries.owasp.org/cheatsheets/File_Upload_Cheat_Sheet.html are applicable only if you upload a file to a real operating system.
Am I right? I would probably check only content type, extension and size, why would I care about other threats? I understand that my application could "pass" a malicious file, but I don't think that our application could be compromised in any way.
In addition, isn't there any Azure service that can scan blob storage files, I would really like to save development efforts
