Welcome to this week’s technology news roundup. This edition focuses on agent-based automation, security improvements, and updates for developers. Recent releases include new agent-driven coding features, more IDE integrations, and expanded organizational controls within GitHub Copilot, further supporting productivity, code quality, and migration automation. On the AI and infrastructure front, Azure and Microsoft Fabric now provide updated compute options, streamlined data engineering tools, and more practical MLops, supporting reliable, scalable, and productive AI solutions.

In parallel, advances in security and governance come from Microsoft and its partners, who introduced improved agent identity controls, support for post-quantum cryptography, unified DevSecOps tools, and detailed data protections. Updates to policy automation, compliance, and endpoint security are shaping continuous and resilient software supply chains. Developers, architects, and security professionals can all find practical takeaways in this week’s update, which covers how automation, intelligence, and robust design are coming together across the industry.

This Week’s Overview

GitHub Copilot

Building on the previous week’s updates in agent design, model selection, workflow automation, and IDE compatibility, GitHub Copilot has progressed with new features and integrations for IDEs, cloud platforms, enterprise controls, and agent workflows. These enhancements add support for more developer environments and management tools, bringing practical gains in productivity, security, and code quality as Copilot’s features become more policy-driven and context aware.

Agentic Automation and IDE/Cloud Integrations

Copilot’s agent capabilities have grown, with recent improvements in Mission Control and updated experiences in Visual Studio and VS Code now joined by Ignite’s announcements. App modernization powered by Copilot agents is now available for JetBrains, Eclipse, and Xcode, adding to existing support in Visual Studio and VS Code. For developers using Visual Studio, .NET, and Azure, Copilot now provides automation for migration and containerization tasks, expanding from basic workflow help to actual application modernization.

The Copilot CLI now supports the latest models (like OpenAI GPT-5.1 and Gemini 3.5 Pro), building on last week’s features in code search and context. Eclipse users can now use Copilot’s coding agents, a continuation of the rollout seen for VS Code and JetBrains. Migration assessment is now connected to Copilot’s agent features, reinforcing prior improvements in policy enforcement and organizational controls.

Intelligent Code Suggestion, Planning, and Test Automation

Copilot has enhanced its predictive editing and planning with new features that build on last week’s inline chat and session management in VS Code. Next Edit Suggestions (NES) are now in public preview for Xcode and Eclipse, expanding coverage beyond VS Code and Visual Studio and moving toward similar functionality across all environments. NES adapts suggestions to align better with user intent, moving beyond basic code completion.

Test automation with Copilot is now available for .NET in Visual Studio 2026 Insiders, marking progress from purely manual reviews to integrated test generation and automation. Agent-based planning features are now available in JetBrains, VS Code, Xcode, and Eclipse, following the recent addition of organizational instruction and review tools.

Enterprise Controls, Model Flexibility, and Security

Continuing from new administrative options last week, this update introduces BYOK (Bring Your Own Key) and broader MCP allowlisting. These features allow enterprises to use their own LLM API keys and define which backend servers developers may connect to, increasing Copilot’s suitability for regulated environments.

Enhanced usage metrics permissions support better tracking of Copilot use and investment. Updated security guides now cover SIEM integration and advanced anomaly detection to provide clear ways for organizations to baseline and review Copilot activity. Authentication improvements across JetBrains, Eclipse, and Xcode further streamline onboarding in managed setups.

Customization and Agent Management Across Development Teams

Applying what was learned about custom instructions and team workflows, Copilot’s agent customization and isolated subagent features are now public for JetBrains, Eclipse, and Xcode, enabling clearer workflow division. The agents.md guide has added input from 2,500 repositories, building on prior documentation and guidance for multi-agent setups.

New video tutorials cover assigning and monitoring agent tasks across multiple platforms, addressing practical workflow management as highlighted previously. These additions make Copilot’s automation easier to adopt for teams with diverse technology stacks.

Modernization, Migration, and DevOps Integration

Building on prior coverage of Visual Studio 2026 and .NET Aspire, Copilot’s Agent Mode now automates many aspects of .NET app migration and legacy modernization. The shift from free tools to subscription models has prompted discussion of costs and continuity for developers and organizations.

Integration between Azure DevOps and Copilot strengthens automation for project management and security across coding workflows. Agent-driven DevOps guides and dashboards help reinforce the practical approach detailed previously.

Productivity, Code Quality, and Workflow Best Practices

Updates to Copilot dashboards, analytics, and guides on prompt engineering build on earlier productivity themes. Keyboard shortcut and command reference tutorials help streamline Copilot Chat in practical contexts. Tips and best practices for integrating Copilot into test-driven development, code reviews, and static analysis reinforce proven approaches for reliable automation.

Security and workflow recommendations point to Copilot’s role alongside linters and other guards, a repeat point from recent discussions on building automation that still requires human oversight for safety.

AI Model Choice, Embedding-Guided Tooling, and Collaborative Development

Auto model selection and controls, previewed last week, are now available in JetBrains, Xcode, and Eclipse, supporting smarter project-specific automation. Gemini 3 Pro is now in public preview, joining GPT-5.1 and Codex, broadening choice for developers.

Updates to embedding-guided tooling and routing in VS Code further extend Copilot’s ability to select the right tool for context. Copilot Spaces now aggregates context from multiple files and repositories, improving overall automation.

AI-Enhanced Code Quality, Review Workflows, and Developer Collaboration

Linter support in Copilot’s code review toolkit continues earlier efforts around CodeQL, agent review features, and better control for team leads. Language-aware analysis builds on efforts for robust organization-level quality review.

Recent sessions at GitHub Universe and Ignite add case studies and guidance focused on developer productivity and automation across the SDLC. Coverage on MCP-backed policy and context management links to previous enterprise-level updates.

Copilot for Data, Natural Language Automation, and Operations

Building on recent automation coverage, Copilot now brings automation to data work. Copilot and Query Editor for SQL Database on Microsoft Fabric move to general availability, expanding Copilot’s reach into database tasks. Natural language pipeline authoring in Fabric Data Factory continues the drive for context-powered automation from app development into data engineering.

Integration with Azure DevOps, including PagerDuty and Datadog, keeps the focus on practical end-to-end DevOps automation.

Other GitHub Copilot News

Further updates to developer tools follow last week’s introduction of the Raptor Mini Model and improved session management. The Download video transitions tools like Gemini 3 Pro to general release and presents demonstrations of Git 2.52 jetpack and Agent 365, highlighting Copilot’s growing ecosystem.

Additional resources support Copilot adoption, code review, and debugging, ensuring developers remain current as Copilot evolves. These tools help teams maintain quality and productivity as they bring automation and AI deeper into daily development.

Additional resources have been shared to help teams adjust to Copilot’s expanding features and agent-based automation, from debugging guides to new feedback channels. These tools will be key for organizations standardizing AI-powered workflows.

ML

The machine learning focus this week is on more scalable compute, enhanced platform features, and better operational tools from cloud and enterprise providers. Azure rolled out ND GB300 v6 VMs, while Microsoft Fabric announced further improvements in its AI and data engineering offerings. Aspects like data quality, model deployment, and performance optimization remain front and center, reflecting an ongoing move to scalable and high-throughput ML infrastructure.

Azure AI Compute and Infrastructure

Azure has released the ND GB300 v6 VMs, which include NVIDIA GB300 NVL72 GPUs, Grace CPUs, and fast InfiniBand networking built for large-scale training and inference. These VMs integrate with Azure CycleCloud, Batch, and AKS, building on existing solutions for orchestrating AI workloads.

The AMLFS 20 (Azure Managed Lustre) SKU delivers bigger namespaces and higher metadata throughput for high-performance workloads, meeting the needs of fast, scalable data access in ML production.

Model Development, Deployment, and Optimization Tools

Microsoft Foundry and Azure ML are focusing on seamless model development and production deployment, helping teams standardize their ML pipelines and cover scenarios like reinforcement learning and intelligent agent deployment. Sessions and tutorials explore metric evaluation, reliability testing, and parameter tuning for Retrieval-Augmented Generation (RAG) agents.

Windows ML updates show ongoing work to enable local AI inference using ONNX Runtime, supporting privacy and low-latency requirements, following previous guidance for regulated environments.

Microsoft Fabric: Enhanced AI and Data Engineering Capabilities

Microsoft Fabric’s latest updates provide more flexible AI integration, with features like ai.embed() (now GA) and support for models from GPT-5, Claude, LLaMA, Azure OpenAI, and AI Foundry. These tools bring AI-powered workflows into common data engineering platforms, facilitating new uses for PySpark, pandas, and hybrid agent workflows.

Updates for event streaming, data clustering, and endpoint management make it easier to unify analytics workloads and speed up real-time processing with KQL/SQL support. dbt Jobs integration expands on recent improvements to data transformation and validation in Fabric.

Data Quality, Analytics, and Platform Integration

Following up on historical dataset modernization, this week’s content provides more strategies for proactive data quality management, supporting cleaner ML pipelines for any cloud setup.

Further coverage shows Azure Databricks and SAP Business Data Cloud links for modern analytics, with stories about Delta Sharing, agent-based automation, and Power BI integrations that help connect disparate data sources and expand AI development.

Coding

Coding news this week includes improvements in programming languages, development tools, and platform interoperability. New releases for C#, F#, and .NET focus on modern features and improved expressiveness. Updates in Visual Studio, VS Code, Git, and Windows target code management, collaboration, and administration. Accessibility, accessible design, and educational content continue to help developers at all levels.

Advancements in .NET Languages: C# 14 and F# 10

After last week’s release of .NET 10, C# 14 and F# 10 introduce updated language features. C# 14 adds extension members, a field keyword, unbound generics in nameof, and more expressive lambda syntax, supporting safer and more consistent code. Migration resources offer help for adapting to these changes.

F# 10 introduces better warning suppression, enhanced property accessor features, and improved computation expressions and scripting performance. These changes support current tooling and offer hints at the direction for .NET 11’s continued compiler improvements.

Visual Studio Family: Modernization, Productivity, and Secure Extension Management

Visual Studio 2026 continues its focus on smooth migration, automation, and productivity. Automated dependency checks, project retargeting, and Copilot support streamline the process of updating legacy apps. Stable update, rollback, and repair options support reliability during upgrades.

Visual Studio Code 1.106 debuts the Private Marketplace, giving organizations better control over which extensions are used while reinforcing secure extension management. Accessibility improvements continue to support every developer’s workflow.

Windows Settings and File Explorer: Developer-Centric Enhancements

Windows updates this week address the needs of developers with tools for managing large projects. The Advanced Settings page and long path support resolve issues in handling more complex codebases. Integration with Git directly in File Explorer underlines Windows’ continuing commitment to supporting version control at the OS level.

Git 2.52: Version Control, Performance, and Migration

Git 2.52 brings further improvements for managing large and legacy repositories. Features like ‘git last-modified’ support better traceability, while geometric repacking and updated tools for large codebases fulfill needs highlighted in recent coverage. Plans to move to SHA-256 and more Rust components demonstrate a continued commitment to security and maintainable workflows.

AI-Enhanced, Cross-Platform Development with Uno Platform

Uno Platform continues the trend of AI-driven cross-platform development. Hot Design and Hot Reload for Studio, support for .NET 10, and Figma integration make it easier for designers and developers to work together and move from design to code more efficiently.

Other Coding News

VS Code’s accessibility improvements build on earlier work, helping developers with different needs be more productive. GitHub’s open-source Annotation Toolkit for Figma enables better communication in design-to-code workflows, reinforcing shared standards and compliance.

The .NET Conf Student Zone 2025 showcases the ongoing commitment to practical education, supporting upskilling with hands-on content.

DevOps

This collection covers practical automation in DevOps workflows, improvements to build and release processes, updates for GitHub Actions and VS Code, and enhancements around governance and migration support.

GitHub and GitHub Actions: Migrations, Workflow Enhancements, and Platform Governance

GitHub continues supporting enterprise migrations with features like GitHub-owned blob storage, reducing setup complexity. New controls for managing App installations give organizations more say in integration security. Public preview updates to Pull Request “Files changed” help developers review large codebases. The Actions cache size limit increase expands support for larger monorepos and dependency sets.

CI/CD Automation, Migration, and Unified Build Approaches

New guides detail CI/CD automation in Microsoft Fabric and how to unify .NET build processes, streamlining deployment using virtual monorepos. Stories about CVS Health’s migration to GitHub Actions and guidance for migrating from Azure DevOps offer practical insight for teams moving to agent-based DevOps setups.

Visual Studio Code: Private Marketplace and IT Governance

The VS Code Private Marketplace provides better governance for organizations. Sessions on deployment and AI oversight reinforce responsible adoption and management, echoing previous efforts to streamline onboarding while maintaining control.

Observability, Monitoring, and Security in DevOps Pipelines

Updated observability tools focus on proactive monitoring, with dashboards that help teams quickly identify incidents. MyDecisive’s Smart Telemetry Hub for Kubernetes and insights on deterministic guardrails reinforce a shift to actionable, policy-driven monitoring and code verification.

DevOps for Data, GenAI, and MLOps

Coverage includes GenAI hackathons, the use of MLflow and Kubeflow, and observability across MLOps pipelines—a continuation of focus on explainability and security in enterprise automation.

Azure DevOps Integrations and Outage Readiness

New Azure DevOps integrations with Jira Service Management create connected, transparent lifecycle management, while coverage of outage response emphasizes best practices for reliability.

Other DevOps News

Golazo, an engineering workflow framework, addresses open team governance and knowledge management issues. Better GitHub license reporting helps with compliance and resource visibility in complex organizations.

Security

Security updates cover expanded AI integration, automation, zero-trust principles, new security features in Azure, .NET, and Microsoft 365, and more detailed data and agent governance. These changes reflect an ongoing shift toward explainable, automated, and unified security practices.

Azure Platform Security: New Foundations and Granular Controls

Azure now offers the MetaData Security Protocol (MSP) for VMs, with support for HMAC validation and eBPF Guest Proxy Agent. These bring controls for zero-trust and explicit allowlisting into general availability, supporting compliance.

Azure Monitor Logs provides GA support for detailed RBAC at multiple levels, advancing least privilege for telemetry data.

Azure DNS Security Policy, now generally available, links threat intelligence with DNS filtering and integrates with DevOps workflows.

Microsoft also detailed its defense against a recent 15 Tbps DDoS attack, highlighting current adaptive, automated protections.

Building Security for AI-Driven Workloads and Agents

Microsoft Entra now manages “Agent ID” for non-human actors, supporting identity lifecycle management and mitigation for issues like prompt injection.

Best practices for securing AI agents with Microsoft Defender and in Microsoft Foundry add practical strategies for real-world risk management.

Oasis introduces more comprehensive credential management for non-person entities in the Microsoft environment.

  • [Power Agentic Access: Governing Non-Human Identities with Oasis Microsoft Ignite 2025](/2025-11-19-Power-Agentic-Access-Governing-Non-Human-Identities-with-Oasis-Microsoft-Ignite-2025.html)

Zenity’s integration provides runtime monitoring and incident response support for agent workflows in Copilot, Studio, and Foundry.

Microsoft Defender for Cloud and End-to-End Application Security

Defender for Cloud expands support for risk management and AI-powered threat detection, including pipelines, with integration for live risk assessments and artifact tracking. Defender’s connection with GitHub Advanced Security aids in automating secure development practices.

Security Copilot’s expanded role now includes Microsoft 365 E5, offering SIEM and XDR coverage plus automated PR remediation with Copilot Autofix. New artifact tracking and shielding cover legacy environments as well.

Comprehensive Governance for Data, Secrets, and Identity

Secrets management and identity rotation benefit from new technical guides for secure Azure Authentication and OIDC, bringing programmatic security best practices into DevOps pipelines.

Microsoft Fabric has introduced finer-grained data permissions, offering write access at the folder and table levels, as well as assignment capabilities in the UI.

SQL auditing and encryption improvements offer better compliance management for regulated workloads.

Post-Quantum Cryptography Advances and Secure Coding

.NET now supports additional post-quantum cryptography algorithms (ML-KEM, ML-DSA), helping organizations prepare for new cryptographic requirements.

The latest CodeQL release improves language coverage and precision for identifying vulnerabilities, building on previous releases.

MLSecOps and prompt security guidance now includes support for PromptGuard 2, CodeShield, and LlamaFirewall, expanding on earlier best practices for treating prompts as code in DevOps security checks.

Microsoft Sentinel: Agentic SIEM, Automation, and AI

Sentinel’s Data Lake feature supports larger-scale case management, while custom agent tools and marketplace integrations provide flexible automation paths. Blink micro-agents and Copilot support remediation action; SAP support adds industry application.

Privacy programs benefit from Copilot integration, automating many aspects of policy compliance.

Policy, Compliance, and Governance Workflows

Azure Policy now includes Service Groups, in-guest policies, and natural language authoring via Copilot, bringing automated compliance workflow support to more teams.

CIS Benchmarks are built-in and available for Azure-endorsed Linux, supporting compliance in hybrid and multi-cloud environments.

Other Security News

Continuous integration for security tools connects policy and evidence tracking throughout the code lifecycle, continuing recent efforts at automation and visibility.

Lifecycle coverage for .NET apps emphasizes paying for support after EOL, helping teams plan for service windows closing.

Microsoft’s approach to autonomous security is reflected in unified dashboards, Copilot support, and predictive protection—linking oversight with adaptive AI techniques.

Developments in adversarial AI defense, led by Microsoft and NVIDIA, continue to make use of real-time GPU-driven safeguards.

Updates in email and collaboration security, including Defender for Office 365 and agent-based controls, offer additional automation for new threat types.

Endpoint and Windows security updates offer improvements in device administration, quantum-ready certificates, and patching, making security easier to manage in production.

  • [Inside Windows Security from Client to Cloud: Innovations in Windows 11 and Windows 365 BRK258](/2025-11-21-Inside-Windows-Security-from-Client-to-Cloud-Innovations-in-Windows-11-and-Windows-365-BRK258.html)

Further resources for this week span cross-platform security integration, data protection, and modern architecture best practices: