Secret scanning in Azure DevOps with Defender for DevOps

In this blog, I am writing about Defender for DevOps and Microsoft DevOps Security. This blog explains the required steps on how to configure Defender for DevOps to make your code more secure with secret scanning. What is Defender for DevOps? Microsoft Defender for DevOps is a new addition to Defender for Cloud. At the … Continue reading Secret scanning in Azure DevOps with Defender for DevOps

Simplify Azure DevOps License Management with Group Rules

Managing user access and permissions in Azure DevOps can be a time-consuming task, especially for larger organizations. In this blog post, I am going to write about Azure DevOps group rules. Group rules can help to make Azure DevOps user management easier and make the onboarding and offboarding process more efficient. What is a Group … Continue reading Simplify Azure DevOps License Management with Group Rules

Protect Azure DevOps Personal Access Tokens with Conditional Access

Conditional access is a crucial security feature for protecting your organisations services from unauthorised access. However, by default, personal access tokens created in an Azure DevOps organisation are not subject to conditional access policies. In this blog post, I will explain how you can configure Azure DevOps to adhere Azure Active Directory Conditional Access Policies … Continue reading Protect Azure DevOps Personal Access Tokens with Conditional Access

Azure Bicep validation in a pull request with Azure DevOps

In this blog I am going to write about how you can automatically validate Bicep template changes inside a pull request in Azure DevOps. This validation step can help identify errors written in a template or parameter file. These errors can be syntactical or input-based errors. The techniques used in this blog are: Azure CLI, … Continue reading Azure Bicep validation in a pull request with Azure DevOps