Browse All Posts (117)
Allison announces a GitHub update that lets repository admins archive pull requests so they’re removed from public view without being deleted. The post explains what happens when a PR is archived (closed and locked), how visibility changes for non-admins, and how to find archived PRs during triage.
Mabasile_MSFT announces general availability of OneLake Storage Tiers and Lifecycle Management in Microsoft Fabric, explaining how to keep frequently used data in the hot tier while automatically moving less-accessed data to cool or cold tiers to reduce long-term storage costs.
Allison announces new GitHub Enterprise Cloud REST API endpoints that let enterprise admins manage Visual Studio Subscription (VSS) assignments in bulk, including listing assignments, mapping UPNs to GitHub handles, and removing incorrect matches—useful when SCIM identities don’t align with VSS UPN formats.
Allison announces a public preview GitHub Actions runner image for Xcode 27 on GitHub-hosted macOS runners, including the new Xcode-version-based support model, the workflow labels to target the image, and current limitations around arm64-only availability.
Mabasile_MSFT announces general availability of the OneLake storage report in Microsoft Fabric, which lets workspace admins generate an item-size breakdown of storage usage in a workspace, including visible, system, and soft-deleted data, plus billing status per item.
Pablo Lopes announces a free, open-source course that guides developers through modernizing a legacy ASP.NET app to .NET 10 using the GitHub Copilot modernization agent, including assessment and planning artifacts, an execution workflow, and a final deployment to Azure App Service.
Microsoft Developer walks through what’s new in Data API builder (DAB) 2.0, focusing on how it sits between an app and a database to expose APIs without writing custom CRUD endpoints. The overview highlights new secrets management, broader authentication options, improved authorization controls, and integration points.
Yesenia Yser and Toby Kohlenberg explain why AI agents need to be treated as first-class security principals, with tightly scoped roles, controlled tool access, and end-to-end auditability to prevent quiet permission creep and hard-to-investigate incidents.
Lily Ma explains why synchronous MCP tool calls break down for long-running work, and shows a practical Azure Functions + Durable Functions pattern you can use today while the MCP Tasks extension rolls out across clients and SDKs.
Ruben Rios announces a preview of Private Marketplace support in Visual Studio, aimed at organizations that need tighter control over how developers discover and install extensions for security, compliance, and governance reasons.
Visual Studio Code runs through the five most popular VS Code extensions in 2026 so far, highlighting what developers are installing to improve their day-to-day workflow inside the editor.
GitHub hosts a live Rubber Duck Thursday session exploring the new GPT-5.6 models (Luna, Terra, Sol) inside the GitHub Copilot App, focusing on what changes when you switch models and how that affects Copilot’s behavior during real-time usage.
Microsoft Security Research, Ravikant Tiwari, Sagar Patil, Suriyaraj Natarajan and Arvind Gowda break down a coordinated compromise of the @asyncapi npm organization, where attackers abused a misconfigured GitHub Actions workflow and trusted publishing to ship import-time malware, and they provide concrete indicators, hunting queries, and remediation steps.
Authorised Territory demonstrates how to add console telemetry to a .NET AI agent harness by wiring up a trace provider and emitting traces using OpenTelemetry, with a local Ollama model (gpt-oss) used as the LLM runtime.
Allison summarizes new GitHub secret scanning and public monitoring improvements, including new partner detectors, expanded push protection defaults, a new webhook field to distinguish secret categories, and additional insight cards to help enterprises understand leak attribution and exposure scope.
The Visual Studio Code Team shares the evolving release notes for VS Code 1.130 (Insiders), with links to the commit log and closed issues so developers can track what’s landing in the build as features are added.
mk_sunitha explains a secure pattern for calling Microsoft Fabric REST APIs from User Data Functions (UDFs), using a service principal plus Azure Key Vault to keep secrets out of application code while still enabling governed automation like triggering Fabric pipelines and managing workspaces.
Manasa Ramalinga lays out a practical reference map for governing enterprise AI and autonomous agents, focusing on how to turn responsible AI policy into enforceable controls, runtime visibility, and audit-ready proof using Microsoft’s governance, security, and observability services.
Polly Davidson lays out a beginner-friendly roadmap for learning GitHub, from core Git concepts and essential commands to day-to-day collaboration with pull requests, issues, and projects. It also introduces GitHub Actions for CI/CD, GitHub Pages for publishing, and practical security basics like 2FA, secret scanning, Dependabot, and CodeQL.
jordanselig shares a reference implementation for giving an AI agent both short-term conversation history and durable, user-scoped memory on Azure App Service, using Redis for bounded session history and Cosmos DB vector search for recall, with keyless auth via managed identity and a one-command azd + Bicep deployment.
Giles Odigwe announces the production release of Agent Skills for Python in Microsoft Agent Framework, explaining how to package reusable domain expertise (instructions, resources, and scripts) that agents can load on demand, with governance features like approvals, filtering, caching, and controlled script execution.
conxu-ms summarizes new Microsoft Fabric Data Factory updates focused on making pipeline orchestration easier, improving monitoring and troubleshooting, and adding AI-assisted operational capabilities for managing data workflows at scale.
Davide Mauri shares a practical first tip for developers who are new to Microsoft Azure and want to start building a full-stack AI application while keeping costs under control, pointing viewers toward Azure’s Budget Bytes guidance and related Azure services.
Aarti Borkar announces Microsoft Defender Experts Threat Intelligence and expanded Microsoft Defender Experts MDR coverage, focused on closing the “intelligence-to-action” gap for security teams. The post explains how curated, expert-led intelligence and managed response workflows are being brought directly into the Defender portal and powered by Microsoft Sentinel.
Visual Studio Code shares quick tips for using the integrated terminal inside VS Code to speed up common command-line tasks without leaving the editor.
John Edward explains why AI agents that look great in demos often break down in production, and what teams need to engineer around the model to make agents reliable at scale.
GitHub compiles its GitHub for Beginners Season 3 into a single crash course covering core GitHub workflows: planning work with Issues and Projects, automating CI/CD with GitHub Actions, using built-in security features, publishing with GitHub Pages, writing Markdown, and making first open source contributions.
alyssaschimm announces a public preview in Azure Monitor that adds advanced platform metrics for Azure Storage, giving container-level visibility into blob capacity and blob count so teams can investigate growth drivers, set better alerts, and improve cost and capacity planning without building custom reporting pipelines.
Rachel Kang explains new Visual Studio features for working with GitHub Copilot models: pinning favorites in the model picker, comparing model capabilities (like context window size and vision support), and tracking context window and plan usage so long-running chats don’t catch you off guard.
Waldek Mastykarz explains how to design evaluation (eval) suites for AI coding agents that produce real signal instead of misleading scores, focusing on representative prompts, unambiguous criteria, multiple runs, and environment control. The article also covers how to write and calibrate LLM-judge rubrics using pass/fail/skip checklists.
Krishna Roy shows how to load test Copilot Studio agents by simulating real multi-turn conversations over Direct Line (HTTP + WebSockets) with Locust, then running the same workload in Azure Load Testing. The post covers measuring TTFB vs full turn completion, handling turn.complete, file uploads, and secret handling with Key Vault.
Pamela Fox shows how to build an MCP server that returns more than plain text: image thumbnails as binary tool results and an interactive MCP app (a carousel) rendered inside VS Code, so GitHub Copilot can search, inspect, and present curated image results.
Thomas Maurer explains what AKS on bare metal is and where it fits for on-premises, edge, and sovereign deployments, focusing on how it keeps the AKS experience while running directly on physical hardware. He also outlines a deployment path using Azure Local SFF with Arc-based management.
Allison summarizes the June 2026 GitHub Copilot update for Visual Studio 2026, focusing on new usage tracking and alerts, a trust validation layer for MCP servers, and Copilot features that tie into pull request workflows and C++ modernization.
Allison announces updates to GitHub Copilot for JetBrains, including BYOK custom endpoint support, expanded plugin-based customizations, Claude provider support for custom agents, and local sandboxing in public preview, plus UX and reliability improvements across chat, model selection, and CLI sessions.
hetvip explains how to use Apache Airflow as an orchestrator for Azure Container Apps (ACA) Jobs, enabling dependency ordering, parallel fan-out, and per-task retries. The post introduces two open-source templates and a shared Airflow operator that triggers ACA Job executions via the ACA Jobs API.
goupadhy announces a preview of autoscaling for Microsoft Fabric Virtual Network (VNet) Data Gateway, explaining how gateway node counts scale in and out based on workload signals to balance performance, reliability, and cost, plus where admins configure limits and review diagnostics logs.
Allison announces a public preview feature where GitHub code scanning surfaces AI-powered security detections directly on pull requests, helping teams catch issues in languages and frameworks that don’t have native CodeQL coverage. The update explains what’s included, how it runs, enablement requirements, and how billing works via AI credits.
akhilkarmalkar announces Azure Front Door edge actions (public preview), a way to run lightweight JavaScript during request processing at Microsoft’s global edge. The post explains where edge actions run in the Front Door pipeline, what scenarios they enable (routing, headers, auth checks), and how Hyperlight micro-VM isolation is used to keep execution secure.
Rahul Bhandari (MSFT) and Tara Overfield recap the July 2026 servicing releases for .NET and .NET Framework, including a list of fixed security vulnerabilities (CVEs) and direct links to release notes, installers, container images, Linux package instructions, and known issues for supported .NET versions.