Showing category results for DevOps

We're shipping two major capabilities that change how security teams enable and act on application security in Azure DevOps: CodeQL default setup makes it possible to enable code scanning across your organization without configuring a single pipeline, and a new combined alerts experience in Security Overview gives security administrators a single p...

Authentication tokens exist to answer one question: is this caller authorized to do this? They are not intended to be a stable data interface, a schema you can depend on, or an input into application logic. If your application decodes tokens and reads claims from them, this is an important heads-up. Token Claims Were Never Guaranteed Although t...

If you use build service identities like to call Advanced Security APIs, the Advanced Security permission changes in Sprint 269 broke that. We restricted API access for build identities as a security improvement but failed to provide an early notice for customers that relied upon this for various automations. We're rolling it back temporarily. Th...

Delivering high-quality software requires clarity, speed, and collaboration. That’s why we introduced the New Test Run Hub in Azure Test Plans. A modern, streamlined experience designed to make test execution and analysis fast and intuitive. And we’re excited to announce that this experience is moving to General Availability (GA) for the Azure Dev...

Security vulnerabilities don't fix themselves. Someone needs to track them, prioritize them, and actually ship the fix. If you've ever tried to manage security alerts alongside your regular sprint work, though, you know the friction: you're looking at an alert in one tab, switching to your backlog in another, trying to remember which vulnerability ...

In the new year, we’ll be retiring the Global Personal Access Token (PAT) type in the Azure DevOps Services product. No changes will be made to global PATs in the Azure DevOps Server product. Global PATs allow users to authenticate across all accessible organizations. While this can feel convenient, a single credential with broad reach creates a c...

In May, we talked about the evolution of GitHub Copilot from a coding assistant into an AI powered peer programmer. Since then, GitHub has taken a major step forward - becoming an open platform for agentic development, where Agent HQ enables developers to orchestrate any agent, anytime, anywhere. Agent HQ provides observability, governance, and sec...

This post walks through how to implement "build once, deploy everywhere" patterns using Azure Container Apps with the new and layered infrastructure features in Azure Developer CLI v1.20.0. You'll learn how to deploy the same containerized application across multiple environments with proper separation of concerns. This is the third installment i...

To ensure our hosted agents in Azure Pipelines are operating in the most secure and up-to-date environments, we continuously update the supported images and phase out older ones. In October 2024, we announced support for Ubuntu-24.04. Soon, we plan to update the ubuntu-latest image to map to Ubuntu-24.04. Additionally, MacOS 15 Sequoia and Windows ...

Today we are excited to take our local MCP Server for Azure DevOps out of preview 🥳. Since the initial preview announcement, we've worked closely with early adopters and the community to incorporate feature suggestions and feedback. We’ve improved login and authorization, added and refined tooling, and introduced domains so users can scope active t...