Merge pull request #8189 from MicrosoftDocs/users/glmorale/sprint260releasenotes

gloridelmorales · web-flow · commit 9089026a57a0 · 2025-08-11T15:55:22.000-07:00
Azure DevOps Sprint 260 release notes
diff --git a/release-notes/2025/boards/sprint-260-update.md b/release-notes/2025/boards/sprint-260-update.md
@@ -0,0 +1,17 @@
+---
+title: Azure DevOps Release Notes - Azure Boards Sprint 260 Update
+description: See the Sprint 260 feature updates for Azure Boards, including next steps.
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+---
+
+# Azure Boards - Sprint 260 Update
+
+## Features
+
+[!INCLUDE [sprint-260-update-links](../includes/boards/sprint-260-update-links.md)]
+
+[!INCLUDE [sprint-260-update](../includes/boards/sprint-260-update.md)]
+
+[!INCLUDE [nextsteps](../includes/nextsteps.md)]
diff --git a/release-notes/2025/general/sprint-260-update.md b/release-notes/2025/general/sprint-260-update.md
@@ -0,0 +1,17 @@
+---
+title: Azure DevOps release notes - Azure DevOps Sprint 260 Update
+description: See the Sprint 260 feature updates for Azure DevOps, including next steps.
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+---
+
+# Azure DevOps - Sprint 260 Update
+
+## Features
+
+[!INCLUDE [sprint-260-update-links](../includes/general/sprint-260-update-links.md)]
+
+[!INCLUDE [sprint-260-update](../includes/general/sprint-260-update.md)]
+
+[!INCLUDE [nextsteps](../includes/nextsteps.md)]
diff --git a/release-notes/2025/ghazdo/sprint-260-update.md b/release-notes/2025/ghazdo/sprint-260-update.md
@@ -0,0 +1,17 @@
+---
+title: Azure DevOps release notes - GitHub Advanced Security for Azure DevOps 260 Update
+description: See the Sprint 260 feature updates for GitHub Advanced Security for Azure DevOps, including next steps.
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+---
+
+# GitHub Advanced Security for Azure DevOps - Sprint 260 Update
+
+## Features
+
+[!INCLUDE [sprint-260-update-links](../includes/ghazdo/sprint-260-update-links.md)]
+
+[!INCLUDE [sprint-260-update](../includes/ghazdo/sprint-260-update.md)]
+
+[!INCLUDE [nextsteps](../includes/nextsteps.md)]
diff --git a/release-notes/2025/includes/boards/sprint-260-update-links.md b/release-notes/2025/includes/boards/sprint-260-update-links.md
@@ -0,0 +1,8 @@
+---
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+ms.topic: include
+---
+
+- [Azure Boards and Pipelines integration for GitHub Enterprise Cloud with Data Residency](#azure-boards-and-pipelines-integration-for-github-enterprise-cloud-with-data-residency)
diff --git a/release-notes/2025/includes/boards/sprint-260-update.md b/release-notes/2025/includes/boards/sprint-260-update.md
@@ -0,0 +1,31 @@
+---
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+ms.topic: include
+---
+
+### Azure Boards and Pipelines integration for GitHub Enterprise Cloud with Data Residency
+
+Azure Boards and Azure Pipelines now supports integration with GitHub Enterprise Cloud organizations that have data residency enabled. This update aligns with [GitHub’s September 2024 announcement](https://github.blog/engineering/engineering-principles/github-enterprise-cloud-with-data-residency/) introducing data residency for Enterprise Cloud customers.
+
+**To connect an Azure Boards project:**
+
+Create a new connection in Azure Boards. Then select the **GitHub Enterprise Cloud with data residency** option.
+
+> [!div class="mx-imgBorder"]
+> ![Image to show Connect GitHub with Azure Boards.](../../media/260-boards-01.png "Image to show Connect GitHub with Azure Boards.")
+
+**To connect an Azure Pipeline:**
+
+Create a new Pipeline and select GitHub > More Options > GitHub Enterprise Cloud with data residency.
+
+> [!div class="mx-imgBorder"]
+> ![Image to show GitHub Enterprise with data residency screen.](../../media/260-boards-02.png "Image to show GitHub Enterprise with data residency screen.")
+
+Then enter the URL of your GitHub Enterprise Cloud organization.
+
+> [!div class="mx-imgBorder"]
+> ![Image to show GitHub Enterprise with data residency.](../../media/260-boards-03.png "Image to show GitHub Enterprise with data residency.")
+
+After your https://organization.ghe.com url is validated, the experience is same as it has always been, and you can select your GitHub repositories.
diff --git a/release-notes/2025/includes/general/sprint-260-update-links.md b/release-notes/2025/includes/general/sprint-260-update-links.md
@@ -0,0 +1,10 @@
+---
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+ms.topic: include
+---
+
+- [Only organizations with existing public projects can create new ones](#only-organizations-with-existing-public-projects-can-create-new-ones)
+- [Azure DevOps login flow no longer relies on Azure Resource Manager audience](#azure-devops-login-flow-no-longer-relies-on-azure-resource-manager-audience)
+- [Continuous Access Evaluation on Azure DevOps](#continuous-access-evaluation-on-azure-devops)
diff --git a/release-notes/2025/includes/general/sprint-260-update.md b/release-notes/2025/includes/general/sprint-260-update.md
@@ -0,0 +1,27 @@
+---
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+ms.topic: include
+---
+
+### Only organizations with existing public projects can create new ones
+
+Starting this sprint, only organizations that already have the [Allow public projects policy](/azure/devops/organizations/projects/make-project-public?view=azure-devops#1-enable-anonymous-access-to-projects) enabled can continue using it. The policy does not change for existing customers. 
+
+Microsoft recommends using [GitHub](https://github.com/) for all your public project needs.
+
+### Azure DevOps login flow no longer relies on Azure Resource Manager audience
+
+We've removed a dependency on the Azure Resource Manager (ARM) resource (https://management.azure.com) when logging in or refreshing Entra access tokens used to access Azure DevOps. The ARM resource is often associated with the Azure portal (https://portal.azure.com), and admins may want to restrict which users in their tenant can access the portal through Conditional Access policy (CAP) enforcement.
+
+Due to Azure DevOps previous reliance on ARM, admins had to permit all Azure DevOps users to bypass the ARM CAPs in order to use Azure DevOps. This is no longer necessary as we've removed the ARM resource audience requirement during signin and refresh token flows. 
+
+There remain a couple of notable exceptions  — the following ​user groups may need continued access to ARM:
+
+1. Billing admins need access to ARM to setup billing and access subscriptions
+2. Service Connection creators require continued access to ARM for ARM role assignment and updates to MSIs
+ 
+### Continuous Access Evaluation on Azure DevOps
+
+Azure DevOps now supports [Continuous Access Evaluation (CAE)](https://learn.microsoft.com/entra/identity/conditional-access/concept-continuous-access-evaluation), enabling near real-time enforcement of Conditional Access policies through Microsoft Entra ID. This enhancement allows Azure DevOps to instantly revoke access when critical events occur—such as user disablement, password resets, or location/IP changes—without waiting for token expiration. Real-time enforcement means that compromised accounts or policy violations are addressed as soon as we learn of the event, reducing exposure windows and improving incident response. Developers using CAE-capable client libraries ([].NET now available](https://www.nuget.org/packages/Microsoft.TeamFoundationServer.Client/20.259.0-preview), Python and Go to come) must handle claims challenges and update sign-in flows accordingly. General availability begins August 2025 following phased rollout for all customers.
diff --git a/release-notes/2025/includes/ghazdo/sprint-260-update-links.md b/release-notes/2025/includes/ghazdo/sprint-260-update-links.md
@@ -0,0 +1,11 @@
+---
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+ms.topic: include
+---
+
+- [New secret patterns added to Advanced Security](#new-secret-patterns-added-to-advanced-security)
+- [Periodic repository re-scans performed for secret scanning](#periodic-repository-re-scans-performed-for-secret-scanning)
+- [Dismissals in Advanced Security now available in alert detail UI](#dismissals-in-advanced-security-now-available-in-alert-detail-ui)
+- [Validity checking for secrets now generally available](#validity-checking-for-secrets-now-generally-available)
diff --git a/release-notes/2025/includes/ghazdo/sprint-260-update.md b/release-notes/2025/includes/ghazdo/sprint-260-update.md
@@ -0,0 +1,28 @@
+---
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+ms.topic: include
+---
+
+### New secret patterns added to Advanced Security 
+
+New patterns have been added to Advanced Security's Secret Protection for both user alerts and push protection. View the updated list of supported secret patterns at [Secret scanning patterns](/azure/devops/repos/security/github-advanced-security-secret-scan-patterns?view=azure-devops#partner-provider-patterns). 
+
+### Periodic repository re-scans performed for secret scanning 
+
+For any stale repositories, without committing to the repository you may not receive alerts for new or updated secret patterns. To resolve this, we've added periodic, automatic re-scans performed on your behalf to raise new alerts for updated patterns. 
+
+### Dismissals in Advanced Security now available in alert detail UI
+Previously, dismissal information was only available via the alerts API. Now, information about the latest dismissal and the user identity shows up in the alert detail view.
+
+> [!div class="mx-imgBorder"]
+> [![Image to show information about the latest dismissal.](../../media/260-ghazdo-01.png "Image to show information about the latest dismissal")](../../media/260-ghazdo-01.png#lightbox)
+
+This address [Developer Community feedback](https://developercommunity.visualstudio.com/t/GHAzDO-closed-security-issues-misses-inf/10930119).
+
+## Validity checking for secrets now generally available 
+
+Validity checking is a feature to determine if an exposed secret is active or inactive, helping you prioritize your remediation efforts. No opt-in is needed; once the feature is available in your organization, any patterns that support validity checking will automatically attempt a validity check. In an alert that supports validity checking, you can also manually re-validate the secret. 
+
+See all supported patterns with validity checking at [Secret scanning patterns](/azure/devops/repos/security/github-advanced-security-secret-scan-patterns?view=azure-devops#partner-provider-patterns). 
diff --git a/release-notes/2025/includes/repos/sprint-260-update-links.md b/release-notes/2025/includes/repos/sprint-260-update-links.md
@@ -0,0 +1,8 @@
+---
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+ms.topic: include
+---
+
+- [Improved screen reader support for pull request experience](#improved-screen-reader-support-for-pull-request-experience)
diff --git a/release-notes/2025/includes/repos/sprint-260-update.md b/release-notes/2025/includes/repos/sprint-260-update.md
@@ -0,0 +1,26 @@
+---
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+ms.topic: include
+---
+
+### Improved screen reader support for pull request experience
+
+We improved support for screen readers in the pull request experience.
+The new option in built-in code editor will let you enable announcements for line changes and comments.
+
+To enable the new option, from the pull request page click on the **File** tab. 
+
+> [!div class="mx-imgBorder"]
+> [![Image to show file tab.](../../media/260-repos-01.png "Image to show file tab.")](../../media/260-repos-01.png#lightbox) 
+
+Then, click on the **Editor preferences** button.
+
+> [!div class="mx-imgBorder"]
+> [![Image to Editor preferences button.](../../media/260-repos-02.png "Image to Editor preferences button.")](../../media/260-repos-02.png#lightbox)
+
+On the popup menu, select the **Enable announcements for line changes and comments to enhance screen reader accessibility** option and **Save**.
+
+> [!div class="mx-imgBorder"]
+> [![Image to Editor preferences.](../../media/260-repos-03.png "Image to Editor preferences.")](../../media/260-repos-03.png#lightbox)
diff --git a/release-notes/2025/media/260-boards-01.png b/release-notes/2025/media/260-boards-01.png
diff --git a/release-notes/2025/media/260-boards-02.png b/release-notes/2025/media/260-boards-02.png
diff --git a/release-notes/2025/media/260-boards-03.png b/release-notes/2025/media/260-boards-03.png
diff --git a/release-notes/2025/media/260-ghazdo-01.png b/release-notes/2025/media/260-ghazdo-01.png
diff --git a/release-notes/2025/media/260-repos-01.png b/release-notes/2025/media/260-repos-01.png
diff --git a/release-notes/2025/media/260-repos-02.png b/release-notes/2025/media/260-repos-02.png
diff --git a/release-notes/2025/media/260-repos-03.png b/release-notes/2025/media/260-repos-03.png
diff --git a/release-notes/2025/repos/sprint-260-update.md b/release-notes/2025/repos/sprint-260-update.md
@@ -0,0 +1,17 @@
+---
+title: Azure DevOps Release Notes - Azure Repos Sprint 260 Update
+description: See the Sprint 260 feature updates for Azure Repos, including next steps.
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+---
+
+# Azure Repos - Sprint 260 Update
+
+## Features
+
+[!INCLUDE [sprint-260-update-links](../includes/repos/sprint-260-update-links.md)]
+
+[!INCLUDE [sprint-260-update](../includes/repos/sprint-260-update.md)]
+
+[!INCLUDE [nextsteps](../includes/nextsteps.md)]
diff --git a/release-notes/2025/sprint-260-update.md b/release-notes/2025/sprint-260-update.md
@@ -0,0 +1,64 @@
+---
+title: Azure Boards and Azure Pipelines integration with GitHub Enterprise Cloud
+author: gloridelmorales
+ms.author: glmorale
+ms.date: 8/11/2025
+description: Azure Boards and Azure Pipelines integration with GitHub Enterprise Cloud
+---
+
+# Azure Boards and Azure Pipelines integration with GitHub Enterprise Cloud
+
+Azure Boards and Azure Pipelines now support integration with GitHub Enterprise Cloud organizations with data residency enabled. You can learn more about how to create a new connection for Azure Boards and a new pipeline from the release notes. 
+
+In addition, with this release we are no longer allowing organizations to create public projects. This change won't impact organizations that already have the Allow public policy enabled. 
+
+Check out the release notes for details.
+
+### GitHub Advanced Security for Azure DevOps
+
+[!INCLUDE [sprint-260-update-links](includes/ghazdo/sprint-260-update-links.md)]
+
+### General
+
+[!INCLUDE [sprint-260-update-links](includes/general/sprint-260-update-links.md)]
+
+### Azure Boards
+
+[!INCLUDE [sprint-260-update-links](includes/boards/sprint-260-update-links.md)]
+
+### Azure Repos
+
+[!INCLUDE [sprint-260-update-links](includes/repos/sprint-260-update-links.md)]
+
+## GitHub Advanced Security for Azure DevOps
+
+[!INCLUDE [sprint-260-update](includes/ghazdo/sprint-260-update.md)]
+
+## General
+
+[!INCLUDE [sprint-260-update](includes/general/sprint-260-update.md)]
+
+## Azure Boards
+
+[!INCLUDE [sprint-260-update](includes/boards/sprint-260-update.md)]
+
+## Azure Repos
+
+[!INCLUDE [sprint-260-update](includes/repos/sprint-260-update.md)]
+
+## Next steps
+
+> [!NOTE]
+> These features will roll out over the next two to three weeks.
+Head over to Azure DevOps and take a look.
+
+> [!div class="nextstepaction"] 
+> [Go to Azure DevOps](https://go.microsoft.com/fwlink/?LinkId=307137&campaign=o~msft~docs~product-vsts~release-notes)
+## How to provide feedback
+
+We would love to hear what you think about these features. Use the help menu to report a problem or provide a suggestion.
+
+> [!div class="mx-imgBorder"] 
+> ![Make a suggestion](../media/make-a-suggestion.png)
+
+You can also get advice and your questions answered by the community on [Stack Overflow](https://stackoverflow.com/questions/tagged/azure-devops).
diff --git a/release-notes/TOC.yml b/release-notes/TOC.yml
@@ -10,6 +10,8 @@
       items:
         - name: "2025"
           items:
+          - name: August 11
+            href: 2025/sprint-260-update.md
           - name: July 17
             href: 2025/sprint-259-update.md
           - name: June 30
@@ -294,6 +296,8 @@
         items:
         - name: "2025"
           items:
+          - name: August 11
+            href: 2025/boards/sprint-260-update.md
           - name: July 17
             href: 2025/boards/sprint-259-update.md
           - name: May 19
@@ -460,6 +464,8 @@
         items:
         - name: "2025"
           items:
+          - name: August 11
+            href: 2025/repos/sprint-260-update.md
           - name: July 17
             href: 2025/repos/sprint-259-update.md
           - name: June 30
@@ -908,6 +914,8 @@
         items:
         - name: "2025"
           items:
+          - name: August 11
+            href: 2025/ghazdo/sprint-260-update.md
           - name: July 17
             href: 2025/ghazdo/sprint-259-update.md
           - name: June 30
@@ -967,6 +975,8 @@
         items:
         - name: "2025"
           items:
+          - name: August 11
+            href: 2025/general/sprint-260-update.md
           - name: July 17
             href: 2025/general/sprint-259-update.md
           - name: June 30
diff --git a/release-notes/features-timeline-released.md b/release-notes/features-timeline-released.md
@@ -2,7 +2,7 @@
 title: Azure DevOps Released Features
 author: gloridelmorales
 ms.author: glmorale
-ms.date: 6/30/2025
+ms.date: 8/11/2025
 ms.topic: article
 ms.service: azure-devops
 ms.subservice: azure-devops-release-notes
@@ -37,6 +37,27 @@ You can also [view the build numbers for each version](#azure-devops-server-buil
             <th>Server</th>
         </tr>
     </thead>
+<tr>
+    <td rowspan="9"><a href="2025/sprint-260-update.md" data-raw-source="[11 August 2025](2025/sprint-260-update.md)"> August 11 2025</a></td>
+    <td>Only organizations with existing public projects can create new ones</td><td>General</td><td>N/A</td></tr>
+    <td>Azure DevOps login flow no longer relies on Azure Resource Manager audience</td><td>General</td><td>N/A</td></tr>
+    <td>Continuous Access Evaluation on Azure DevOps</td><td>General</td><td>N/A</td></tr>
+    <td>New secret patterns added to Advanced Security</td><td>GitHub Advanced Security for Azure DevOps</td><td>N/A</td></tr>
+    <td>Periodic repository re-scans performed for secret scanning</td><td>GitHub Advanced Security for Azure DevOps</td><td>N/A</td></tr>
+    <td>Dismissals in Advanced Security now available in alert detail UI</td><td>GitHub Advanced Security for Azure DevOps</td><td>N/A</td></tr>
+    <td>Validity checking for secrets now generally available</td><td>GitHub Advanced Security for Azure DevOps</td><td>N/A</td></tr>
+    <td>Azure Boards and Pipelines integration for GitHub Enterprise Cloud with Data Residency</td><td>Boards</td><td>Future</td></tr>
+    <td>Improved screen reader support for pull request experience</td><td>Repos</td><td>Future</td></tr>
+<tr>
+<tr>
+    <td rowspan="6"><a href="2025/sprint-259-update.md" data-raw-source="[30 June 2025](2025/sprint-259-update.md)"> July 17 2025</a></td>
+    <td>Basic access included for GitHub Enterprise data residency customers</td><td>General</td><td>N/A</td></tr>
+    <td>Advanced Security properly picks up on default branch changes and deleted branches</td><td>GitHub Advanced Security for Azure DevOps</td><td>N/A</td></tr>
+    <td>New Boards Hub now enabled for all customers</td><td>Boards</td><td>Future</td></tr>
+    <td>Bug fixes improving GitHub integration and security</td><td>Boards</td><td>Future</td></tr>
+    <td>Create work items from pull request comments</td><td>Repos</td><td>Future</td></tr>
+    <td>Enhanced diagram support in wiki pages and file preview</td><td>Repos</td><td>Future</td></tr>
+<tr>
 <tr>
     <td rowspan="6"><a href="2025/sprint-258-update.md" data-raw-source="[30 June 2025](2025/sprint-258-update.md)"> June 30 2025</a></td>
     <td>Azure DevOps MCP Server public preview</td><td>General</td><td>N/A</td></tr>
diff --git a/release-notes/features-timeline.md b/release-notes/features-timeline.md
@@ -272,7 +272,7 @@ These investments include:
 
 Managed DevOps Pools is an evolution of Azure DevOps Virtual Machine Scale Set agent pools. It provides better pool scalability and reliability, simplifies pool management, and allows you to use the VM images from Microsoft-hosted agents on custom Azure VMs. You can read more about Managed DevOps Pools [here](https://aka.ms/mdp-docs). Features to support new scenarios will be added to Managed DevOps Pools and not Virtual Machine Scale Set pools. Managed DevOps Pools is generally available, so you can migrate your Virtual Machine Scale Set pools to Managed DevOps Pools and use them for production workflows, wherever possible.
 
-You will find the detailed roadmap [here](https://learn.microsoft.com/en-us/azure/devops/managed-devops-pools/features-timeline?view=azure-devops)
+You will find the detailed roadmap [here](/azure/devops/managed-devops-pools/features-timeline?view=azure-devops)
 
 ### YAML and release pipelines feature parity
 
