Browse DevOps Community (141)

sachoudhury explains GitHub Copilot Custom Skills: repo- or user-scoped SKILL.md “runbooks” that Copilot can discover and execute in agent mode to automate multi-step developer workflows (commands, scripts, and report generation).

In this community post, nishantmv breaks down a production-grade Azure serverless architecture for an enterprise facility-management IoT platform, covering a multi-provider telemetry pipeline, template-driven device modeling, an event-driven rule engine, and the security/resilience hardening that made it ready for production.

TomClaes shows how to use Azure Policy to enforce the correct LicenseType on SQL Server enabled by Azure Arc, including PowerShell-based deployment, remediation runs, and the RBAC permissions needed to keep Arc SQL inventory compliant at scale.

fenildoshi2510 explains how to sync Azure Key Vault secrets into an AKS namespace managed by Rancher using External Secrets Operator (ESO) and Workload Identity, so apps can consume Kubernetes Secrets without storing any client secrets.

Siddhi_Singh shows how to enable Istio/Envoy access logging in Azure Kubernetes Service (AKS) and correlate those mesh logs with Azure Application Insights telemetry using W3C trace context and Log Analytics (KQL) for end-to-end request troubleshooting.

TulikaC introduces a new drag-and-drop zip deployment experience for Azure App Service for Linux via the Kudu/SCM site, including optional server-side builds, deployment phase tracking, and access to deployment and runtime logs.

mosiddi explains how Microsoft’s open-source Agent Governance Toolkit implements production-grade security and reliability controls for autonomous AI agents, covering its package architecture, policy enforcement (Agent OS), zero-trust identity (Agent Mesh), privilege rings (Agent Hypervisor), and SRE/observability integrations, including Azure deployment patterns.

Gapandey lays out a practical, end-to-end MLOps template on Azure: train a scikit-learn model from data in Azure Blob Storage, package it as a self-contained pickle bundle, register it in an Azure ML Registry with auto-versioning, and deploy it to an Azure ML Managed Online Endpoint via an Azure DevOps multi-stage pipeline.

theringe walks through deploying to Azure App Service from Azure DevOps using a user-assigned managed identity (UAMI), including the Azure DevOps service connection setup, required RBAC permissions, and how to validate the deployment identity via AppServiceAuditLogs.

AjaySingh_ explains how to avoid false “backend unhealthy” states and resulting 502/504 errors by designing a lightweight, unauthenticated IIS /health endpoint and configuring Azure Application Gateway health probes (including correct host header/SNI handling).

jordanselig walks through building an MCP App (a tool plus a UI resource) with ASP.NET Core, rendering an interactive weather widget inside chat clients like VS Code Copilot, and deploying the MCP server to Azure App Service using azd and Bicep.

Shamir_AbdulAziz describes how Microsoft built Azure SRE Agent—an AI-powered ops agent—using “agentic workflows” across the SDLC, with human-in-the-loop governance, RBAC guardrails, and deep integration into telemetry and incident systems to reduce on-call toil and speed up incident mitigation.

Lee_Stott walks through what Azure Developer CLI (azd) is, why it’s useful for beginners, and how the AZD for Beginners learning path helps you move from local code to a repeatable Azure deployment workflow with templates, infrastructure as code, and lifecycle cleanup.

alinetran explains how to automate Azure Arc server onboarding at scale using Ansible with a new purpose-built onboarding role, focusing on least-privilege permissions and removing manual steps that don’t scale.

Vineela-Suri walks through how Azure SRE Agent integrates with Azure Monitor to pick up fired alerts, investigate them autonomously, and merge repeated firings into a single incident thread, using an AKS + Azure Cache for Redis failure scenario and practical guidance on when to enable or disable auto-resolve.

Gaurav-Seth describes a hands-on, AI-guided workflow for migrating legacy IIS-hosted ASP.NET Framework apps to Managed Instance on Azure App Service, including how registry, storage, SMTP/MSMQ, and COM dependencies are handled via ARM templates and an install.ps1 startup script.

joclemen breaks down what Azure Key Vault’s paired-region replication really guarantees during a regional outage, why it becomes read-only after Microsoft-managed failover, and how to build true multi-region continuity with two Terraform reference architectures (private and public endpoint designs).

MelanieKraintz007 announces GA support for managed identities and workload identity in Azure Red Hat OpenShift, explaining how ARO operators and Kubernetes workloads can use short-lived tokens with Azure RBAC to reduce reliance on long-lived service principals.

whosocurious walks through building a cost-aware Azure IaC pipeline that estimates the monthly cost impact of Bicep changes in pull requests using Azure what-if, the Azure Retail Prices API, and GitHub Actions, then posts the results as a PR comment and optionally blocks merges over a threshold.

In this community post, lakshaymalik lays out a practical AKS DevSecOps model that prevents common Kubernetes misconfigurations by enforcing governance at admission time with Azure Policy/Gatekeeper, then backing it up with runtime detection (Defender for Containers) and continuous compliance to catch drift.