policy-best-practice-start-with-audit

Status: IN

Best practice: start Azure Policy with `audit`/`auditIfNotExists` effects before enforcement (`deny`, `modify`, `deployIfNotExists`), and always use initiatives even for a single policy definition.

Source: entries/2026/03/11/policy-overview.md

JSON