Browse All DevOps Content (760)

brauerblogs announces a two-day “Path to Production for Agents” webinar series (July 27–28) focused on moving agentic AI from prototypes to production, covering governance, landing-zone architecture, AgentOps practices, security risks like prompt injection, and cost/performance optimization with Azure Monitor and Microsoft Foundry.

BhaktiRath95 walks through common startup and deployment failures in Azure Container Apps and Container App Jobs for .NET and Django workloads, showing what the errors look like in logs, why they happen, and the concrete CLI, configuration, and code changes that fix them.

Allison announces an update to GitHub code scanning that lets organizations keep security coverage on inactive repositories by running scheduled scans when there have been no pushes or pull requests for six months or more.

Allison announces that GitHub’s security validation for third-party coding agents is now generally available, bringing the same automated checks used for the GitHub Copilot cloud agent to agent-generated pull requests.

Mayunk Jain summarizes the Azure App Service announcements from Microsoft Build 2026, including a new “Easy AI experience” with built-in MCP, GA of Isolated v4 for App Service Environments, and Managed Instance improvements for modernizing legacy apps (including IIS) with better diagnostics and deployment workflows.

Jon Galloway recaps Microsoft Build 2026 with the main developer announcements across GitHub Copilot, Microsoft Foundry, Azure, Windows, Visual Studio, and .NET—highlighting agentic workflows, new tooling, governance specs, and a curated set of sessions and hubs to follow up on what shipped.

sunayanasingh explains how Azure Monitor now supports exemplars so teams can jump from Prometheus/OpenTelemetry metric spikes to the exact OpenTelemetry trace in Application Insights, using Azure Managed Grafana for visualization and trace linking.

Allison announces general availability of IP allow list enforcement for GitHub Enterprise Cloud Enterprise Managed Users (EMUs), extending enterprise network access policies to repositories owned under EMU user namespaces and covering web, Git, and API access.

Soo Stahl and Bhuvan Shah announce Enterprise Live Migrations (ELM), a limited public preview feature for moving repositories from Azure Repos to GitHub with continuous sync and a short, scheduled cutover window to minimize downtime for enterprise teams.

Johnson Shi provides an operational guide to running a geo-replicated Azure Container Registry (ACR) for high availability, explaining how global endpoints, regional endpoints, and dedicated data endpoints behave during incidents, throttling, and DNS changes, with concrete Azure CLI steps for setup, routing control, and troubleshooting.

Natalie Guevara answers common beginner GitHub questions, including how to set up SSH keys, create personal access tokens (fine-grained and classic), resolve merge conflicts, undo commits, sync forks, and review pull requests—plus a quick look at using GitHub Copilot for code review in PRs.

GitHub engineers answer common beginner questions, including how to authenticate to GitHub with SSH keys or a personal access token (PAT), when to merge vs rebase, how to resolve merge conflicts, how to sync a fork, and how to review a pull request.

Matt Bierner and Reynald Adolphe walk through recent improvements to the Markdown preview experience in Visual Studio Code, focused on reviewing documentation changes more effectively and catching broken links and references while editing.

John Edward outlines practical ALM and environment strategy guidance for Microsoft Copilot Studio, focusing on how to run copilots like enterprise applications with multi-environment setups, solution-based development, source control, CI/CD pipelines, configuration management, governance, and ongoing monitoring.

Sally Dabbah explains how to turn Synapse/ADF/Microsoft Fabric pipeline failures into structured, queryable telemetry by sending standardized failure events into Azure Monitor Log Analytics via the Logs Ingestion API and a Data Collection Rule, enabling KQL-based analysis, alerting, and reliability reporting across environments and datasets.

Hidde de Smet compares the GitHub Copilot App and the VS Code Agents Window, focusing on how each surface supports agent-first workflows: isolated sessions, worktrees, review/CI loops, and customization via MCP and instruction files. It includes a practical “which one should you use?” decision guide for day-to-day development vs delegated work.

This week in DevOps, agentic workflows moved from demos to platforms you can standardize, version, and roll out, with new GitHub Copilot and agent app surfaces, deeper PR-integrated review, and APIs that let other systems trigger governed agent tasks. Security teams also got a clearer warning label as prompt injection and a large npm campaign showed how agent tools and CI publishing flows can be abused, reinforcing least privilege, pinning, and explicit approval boundaries. On the operations side, direct OTLP ingestion into Azure Monitor reached GA and agent-focused observability views expanded, making trace-first debugging and cost visibility more practical as AI credits and usage-based billing become day-to-day concerns.

anandranjan explains a practical AKS pattern for keeping secret values out of YAML and CI/CD by using Azure Key Vault with the Secrets Store CSI Driver and AKS Workload Identity. It covers the identity flow, required AKS/Azure setup, workload onboarding YAML, and common troubleshooting points around federation, labels, mounts, and permissions.

Alex-wdy explains how Azure CLI 2.86.0+ speeds up slow enterprise-scale az login by skipping post-auth subscription enumeration across many tenants and subscriptions. The post introduces --skip-subscription-discovery (and --skip-sub), targeted --subscription on login, and when to use (or avoid) these flags.

GitHub shares highlights from its Open Source Assistive Technology Hackathon, hosted at GitHub HQ in San Francisco with partners including NV Access and accessibility-focused organizations, centered on helping participants build skills and contribute to assistive technology projects.

Allison summarizes what’s new in CodeQL 2.25.6 for GitHub code scanning, including Swift 6.3.2 support, full extractor and data flow coverage for C# 14 and .NET 10, and query improvements that expand sensitive-data detection and reduce false positives across multiple languages.

Allison announces a public preview feature that lets enterprises centrally configure and distribute GitHub Copilot CLI plugins through VS Code 1.122, using a shared settings.json so standardized plugin marketplaces, hooks, and MCP configurations are applied automatically for licensed users.

GitHub demonstrates how to extend GitHub Copilot code review using Model Context Protocol (MCP) and custom skills, so reviews can incorporate internal documentation and repository-defined checklists to produce findings aligned with a team’s engineering standards.

Microsoft Defender Security Research Team, Dor Edry and Amit Eliahu break down a prompt-injection pathway in Anthropic’s Claude Code GitHub Action that could leak CI/CD secrets by reading /proc/self/environ, and provide practical hardening guidance for AI-powered GitHub Actions workflows.

Pierce Boggan recaps day one highlights from Microsoft Build 2026, focusing on how VS Code and GitHub Copilot roles are evolving, what’s coming next for AI adoption in the editor, and how agent-style workflows are changing developer expectations.

Vivek Bhadauria discusses how Microsoft built an end-to-end “observe → evaluate → optimize” workflow for AI agents, sharing practical lessons on agent observability, context-specific evaluation rubrics, and using inner- and outer-loop signals to continuously improve agent behavior in production.

Seth Juarez and Burke Holland introduce the GitHub Copilot app, a desktop experience aimed at agent-driven development where you can hand off an issue, watch agents work, review the diff, and merge changes from a single screen.

Burke Holland and Reynald Adolphe show how to use GitHub Copilot CLI inside VS Code for “rubber duck debugging”: having a second model family review and challenge the first during planning, implementation, and testing to help catch mistakes earlier.

Nish Anil, Hazem El-Hammamy, and Jeff Fritz show how GitHub Copilot’s modernization capabilities use agentic AI to analyze large legacy codebases, map dependencies, plan upgrades, and refactor safely at scale, including governance concepts like rule books and command-center style oversight.

Harald Kirschner walks through the new Agents window in Visual Studio Code, focusing on how it improves visibility across agent sessions, supports multi-workspace workflows, and reduces cost through token optimization and automatic model routing.

Courtney Webster and Burke Holland discuss how AI-driven, prototype-first workflows are changing the traditional PM-to-developer handoff, including PMs contributing directly via pull requests and teams iterating faster with tighter feedback loops.

Justin Chen and Burke Holland demonstrate VS Code’s integrated browser and how it fits into a real development workflow, including sharing browser tabs as agent context, inspecting page content, interacting with elements, running Playwright scripts, validating changes live, and debugging with breakpoints without leaving the editor.

Joanna Oikawa explains how the VS Code design team is adapting the editor’s user experience for more agentic workflows, sharing concrete UX changes, the trade-offs behind them, and lessons learned from what didn’t work.

Visual Studio Code hosts a Microsoft Build 2026 live stage session with demos and discussion spanning GitHub Copilot, the Copilot SDK, and VS Code workflows. It touches on agent integration, multi-model verification, security concerns in AI code review, and developer tooling updates shared by the teams building them.

Johnson Shi, Zoey (Zhuyu) Li, and Huangli Wu announce public preview support for regional endpoints in Azure Container Registry geo-replication, including the new Azure CLI and portal experience, endpoint URL formats, and practical guidance for pinning pushes/pulls and Kubernetes workloads to specific replicas.

shijain13 explains what’s new in the Azure Monitor Health Model (Preview), focusing on expanded discovery options, faster health signal setup, and new aggregation rules that help teams reason about workload health with less alert noise and clearer troubleshooting paths.

davidwright, Arnaud Lheureux, and Suzanne Daniels explain why architecture and governance frameworks only help when they actively change delivery decisions. Using Git-Ape as the example, they show how to turn Azure Well-Architected, Azure Policy (including NIST mappings), and CAF guidance into repeatable repo-driven assessments with prioritized findings tied to code and policy.

Allison announces that Copilot Pro, Pro+, and Max subscribers can use “Fix with Copilot” to automatically investigate and propose fixes for failing GitHub Actions jobs, pushing changes to a branch and tagging the developer for review.

Allison announces a public preview REST API that lets Copilot Pro, Pro+, and Max users start and track Copilot cloud agent tasks programmatically, enabling teams to integrate agent-driven code changes into scripts and internal tooling.

The Visual Studio Code Team shares what’s new in VS Code 1.124 (Insiders), including several usability updates to the Agents window (session-scoped prompt history, multi-chat local sessions, background send, and session grid keyboard navigation) plus regex flag support for folding markers in language configuration.