Azure Weekly
Issue #558 - 12th April 2026
Welcome to Issue 558 of The Azure Weekly Newsletter. Highlights this week include: MAI-Transcribe-1, MAI-Voice-1, and MAI-Image-2 in Microsoft Foundry: Microsoft announces public preview of three new in-house multimedia models on Foundry: MAI-Transcribe-1 for speech recognition across 25 languages at roughly half the GPU cost of leading alternatives, MAI-Voice-1 for high-fidelity speech generation that produces a minute of audio in under a second, and MAI-Image-2, a text-to-image model that debuted in the top three on the Arena.ai leaderboard.
Getting Started with Foundry Local: A Student Guide to the Microsoft Foundry Local Lab: a walkthrough of the Microsoft Foundry Local Lab aimed at students and self-taught developers, covering a thirteen-part hands-on path from installing the local runtime through SDK use, RAG, single and multi-agent workflows, evaluation-led development, Whisper transcription, custom ONNX models, tool calling, and a browser-based capstone UI.
How Do We Know AI Isn't Lying? The Art of Evaluating LLMs in RAG Systems: a practical guide to evaluating Retrieval-Augmented Generation systems, explaining why probabilistic LLM output is hard to grade, breaking down the key metrics (relevance, faithfulness, groundedness, completeness, hallucination rate), and introducing tools such as RAGAS, LangChain evaluators, and the emerging LLM-as-a-Judge pattern.
Visual Studio March Update – Build Your Own Custom Agents: The March update for Visual Studio 2026 Insiders introduces customisable GitHub Copilot agents defined as .agent.md files in your repo, reusable agent skills, a new language-aware find_symbol tool, enterprise MCP allowlist governance, Copilot-powered test profiling and live perf tips during debugging, and one-click NuGet vulnerability fixes.
Continued Investment in Azure App Service: a recap of ongoing Azure App Service investment, highlighting Premium v4 for higher performance, the new App Service Managed Instance for workloads needing deeper environment control, regular runtime updates across .NET, Node.js, Python, Java and PHP, expanded availability zone support, and improved GitHub Actions and Azure DevOps deployment workflows, including the recent GA of Aspire on App Service.
The Durable Task Scheduler Consumption SKU is now Generally Available: The pay-as-you-go Consumption SKU of Azure's Durable Task Scheduler is now generally available, offering a fully managed orchestration backend for AI agent workflows, event-driven pipelines, and distributed transactions with up to 500 actions per second, 30 days of history, Entra ID authentication, and no idle costs.
Azure Container Apps Blue-Green Terraform Deployment: a walkthrough of implementing zero-downtime blue-green deployments on Azure Container Apps entirely through Terraform, using revision labels, weighted traffic, and an enable_blue_green flag to manage the two-apply lifecycle, with instant rollback by flipping traffic back to the still-warm previous revision.
Enterprise-Scale Azure Subscription Vending Using Azure Verified Modules (AVM): a production-ready guide to automating Azure subscription creation at scale using the Azure Verified Modules subscription vending pattern with Terraform, covering management group placement, the often-tricky Subscription Creator role assignment at the EA enrollment-account scope, and alignment with Azure Landing Zone best practices.
General Availability of Private Application Gateway on Azure Application Gateway v2: application Gateway v2 now supports fully private deployments at general availability, removing the long-standing public IP requirement and enabling private IP-only frontends, full NSG and route table control, deny-all outbound rules, and forced tunneling through hub firewalls or on-premises appliances for regulated and landing-zone workloads.
⚙️ AI + Machine Learning
- The Azure Updates Team highlights a Retirement: Select Azure AI Language Features
- Mitchell Gulledge explains how to Accelerate Agent Development: Hacks for Building with Microsoft Sentinel data lake
- Garfield He covers Azure Speech – Neural HD Text to Speech: Recent Voice Updates
- Osi highlights Now in Foundry: NVIDIA Nemotron-3-Super-120B-A12B, IBM Granite-4.0-1b-Speech, and Sarvam-105B
- Mhadi Putro talks about Microsoft Foundry: Unlock Adaptive, Personalized Agents with User-Scoped Persistent Memory
- Lee Stott explains how to Build and Deploy a Microsoft Foundry Hosted Agent: A Hands-On Workshop
- Andi Veris explains How Veris AI and Lume Security built a self-improving AI agent with Microsoft Foundry
- Yan Liang explains How to Compute GPU Capacity for GPT Models GPT4o and Later and walks through Configuring Noise Detection and BargeIn with Azure Voice Live API
- On the Azure DevOps Podcast, Mads Torgersen (@MadsTorgersen) talks AI - Episode 395
- Dave Rendon covers Securing the Agentic AI Era: A Deep Dive into Microsofts End-to-End Security Architecture for
- Vaibhav Pandey writes: Bring Your Own Model BYOM for Azure AI Applications using Azure Machine Learning
- Efim Hudis discusses Addressing the OWASP Top 10 Risks in Agentic AI with Microsoft Copilot Studio
- Dave Rendon discusses AI Agents Are Already Transforming Nonprofits: A Technical Deep Dive into Microsoft’s Agentic Architecture for Mission-Driven Organizations and provides a How Telcos Are Becoming AI-Native: A Deep Dive into Microsoft’s Frontier Transformation for Telecommunications.
- On the Azure Developer Community Blog, Ayca Bas talks about Agents League: Meet the Winners
- Naomi Moneypenny introduces MAI-Transcribe-1, MAI-Voice-1, and MAI-Image-2 in Microsoft Foundry
- Akanksha Gahalout discusses Vector Drift in Azure AI Search: Three Hidden Reasons Your RAG Accuracy Degrades After Deployment
- Diti Saxena describes How Do We Know AI Isnt Lying The Art of Evaluating LLMs in RAG Systems
🔎 Analytics
- Mark Kromer explains how to Modernize your ADF pipelines to unlock Fabric and announces the latest innovations in Fabric Data Factory: Apache Airflow jobs and pipelines
- Chunhua Gu explains how to Invoke SSIS Package Activity in Microsoft Fabric (Preview)
- Alex Whittles asks: What is Microsoft IQ?
- Mariya Ali discusses Mastering monitoring in Microsoft Fabric Data Warehouse
- Pankaj Arora introduces Capacity overage: Flexibility when you need it most (Preview)
- On the MSSQL Tips site, Koen Verbeeck (@Ko_Ver) provides a Microsoft Fabric Architecture FAQ
- Audrey Dischert discusses FabCon 2026: A Breakthrough Year for the Unified Data + AI Platform
- Marisa Mathews provides the Fabric Influencers Spotlight: March 2026
- Avinanda Chattapadday covers Microsoft JDBC Driver for Microsoft Fabric Data Engineering (GA)
- Amar Digamber Patil explains how to Compute auto-scaling choices to better optimize price-performance for SQL databases in Microsoft Fabric (Preview)
- Madhu Bhowal explains How Stibo Systems MDM powers trusted data for analytics and AI in Microsoft Fabric (Preview)
- John Kerski writes about 5 Ways Microsoft Fabric Is Embracing Simplicity
- Ruth Steinberg highlights that Sensitivity labels in Fabric for public APIs are Generally Available
🖥️ Compute
- The Azure Updates Team announces that Azure Premium SSD v2 Disk is now available in South India (GA), Azure Premium SSD v2 Disk is now available in US Gov Arizona (GA) and Ephemeral OS Disk with full caching for VM/VMSS (Public Preview)
- Nick Greenfield highlight that the The Durable Task Scheduler Consumption SKU is now Generally Available
- Vivek Singla announces Ephemeral OS Disk with full caching for VM/VMSS (Public Preview)
- Rohan B. writes about Autonomous Self-Healing for Azure VMware Solution Private Clouds
🚢 Containers
- The Azure Updates Team announces Azure Red Hat OpenShift in Indonesia Central (GA)
- Achraf Ben Alaya talks about GitHub Copilot Skills for Terraform: 5 On-Demand AI Assistants for Azure Container Apps
- lakshay Malik discusses DevSecOps on AKS: Governance Gates That Actually Prevent Incidents
- Karol Pieciukiewicz blogs about Azure Container Apps Blue-Green Terraform Deployment
- Ni Srivastava describes Blue-Green Strategy for AlwaysOn TCP Workloads on Azure Container Apps
- Richard Hooper (@Pixel_Robots) writes about AKS Cluster Health Monitor - Now in Preview
- Tobias Fenster explains how to Deploy LLMs on Azure Kubernetes Service with AI Runway
🗄️ Databases
- The Azure Updates Team highlights two retirements: Azure Cosmos DB for PostgreSQL will retire on March 31, 2029 and discusses External Data Import & Data Connections in Azure Machine Learning will be retired on September 30, 2026
- Mohamed Baioumy writes about Why Long-Term Retention LTR Backups Dont Attach After a PITR Restore in Azure SQL Database, describes Understanding Azure SQL Data Sync Firewall Requirements, discusses Troubleshooting Azure SQL Data Sync Groups Stuck in Progressing State and covers Understanding and Monitoring Class 2 Transactions in Azure SQL Database
- Ggauri Kasar blogs about Handling Unique Constraint Conflicts in Logical Replication
- Pieter Vanhove (@Pieter_Vanhove) provides the Azure Database Security Newsletter - April 2026
- Sunil Nair explains how to Connect to Azure SQL Database using a custom domain name with Microsoft Entra ID authentication
- Tiffiany explains how Shared Data and Collective Resolve Are Advancing ALS Research
🛠️ Developer Tools
- On the Visual Studio blog, Mads Kristensen (@mkristensen) discusses Bookmark Studio: evolving bookmarks in Visual Studio
- Lee Stott blogs about Getting Started with Foundry Local: A Student Guide to the Microsoft Foundry Local Lab
- Meenakshi Balekar writes: Let's Create Our First Microsoft 365 Agent SDK using Python - For Single Tenant and explains How to Add an Adaptive Card in Microsoft 365 Agent SDK
- Shikha Ghildiyal writes about VS Code Extension
- Daniel Genkin introduces TSGen: Automated TSG Generation @ Scale – Built by AI
- On The New Stack, Jack Wallen describes How to integrate VS Code with Ollama for local AI assistance
- Seth Patton runs through What's New in Microsoft 365 Copilot March 2026
- Swapnil Nagar discusses MCP Apps on Azure Functions: Quick Start with TypeScript
- Also on the Visual Studio blog, Mark Downie (@poppastring) covers the Visual Studio March Update – Build Your Own Custom Agents
- Sundar Balaji A writes about VS Code Custom Agents: AI-Powered Terraform Security Scanning in the IDE
- Efrat Gilboa highlights that Agent Evaluation in Microsoft Copilot Studio is now generally available
- Lily Ma explains how to Give your Foundry Agent Custom Tools with MCP Servers on Azure Functions
🔩 DevOps
- The Azure Updates Team highlights the Azure DevOps March 2026 updates (GA)
- On the Microsoft DevOps blog, Dan Hellem describes Improving the Markdown Editor for Work Items
- Praveen Kumar Sreeram (@PrawinSreeram) discusses Microsoft Fabric Deployment Pipelines — A Complete Deep Dive
- Nasreen Sarah covers CI/CD as a Platform: Shipping Microservices and AI Agents with Reusable GitHub Actions Workflows
- Toddy Mladenov (@toddysm) describes Driving DevSecOps Standards: NISTs Live Guidelines for Secure Software Development, Security, and Operations Practices
⚙️ Hybrid + Multicloud
- The Azure Updates Team announces Azure Data Box enhances compliance with automatic Secure Erasure Certificates (GA) and Azure Data Box now supports Azure Files Provisioned v2 (GA)
- On the Azure blog, Douglas Phillips covers Building sovereign AI at the edge: Microsoft and Armada collaborate to deliver Azure Local on Galleon modular datacenters
- Leo Li highlights the On-premises data gateway February 2026 release and the On-premises data gateway March 2026 release
- Dr. Danimir Ljepava discusses Expanding Azure Arc SQL Migration with a New Target: SQL Server on Azure Virtual Machines
- Shivani Thadiyan talks about Azure SQL Managed Instance as an AI-Enabled PaaS Platform
- Yunis Hussein discusses how to Run the latest Azure Arc agent with Automatic Agent Upgrade (Public Preview)
🎭 Identity
- The Azure Updates Team announces User delegation SAS for Azure Tables, Azure Files, and Azure Queues (GA)
- Tobias Zimmergren & Jussi Roine (@CtrlAltAzure) discuss Governing the Ungoverned: Agent 365 and Entra Agent ID
- Pratim Dasgupta writes about Zero Trust for data: Make Microsoft Entra authentication for SQL your policy baseline
- Omar Abu Arisheh describes How to revoke connection OAuth programmatically in Logic Apps
- Joseph Dadzie highlights that Microsoft Entra expands SCIM support with new SCIM 2.0 APIs for identity lifecycle operations
🔌 Integration
- The Azure Updates Team announces Azure Event Grid provides new capabilities for smarter, more secure event-driven architectures (GA) and new capabilities in Public Preview
- Naga Surendran (@naga_sur) highlights: Microsoft named a Leader in 2026 Gartner Magic Quadrant for Integration Platform as a Service
- Gyanendra Kumar Gautam covers how AI is Reshaping Microsoft Integration. Here's What Actually Matters This Week
- Roberto Cervantes blogs about Powering Event Driven Payments with Stripe and Azure Event Grid
- Eldert Grootenboer (@egrootenboer) announces general availability of Network Security Perimeter for Azure Service Bus
- Ivay loivanov announces Windows 365 connector for Microsoft Power Platform and Azure Logic Apps (Public Preview)
💡 Internet of Things
- Sander van de Velde (@svelde) talks about Azure Arc Connected Machine agent, automatic update, covers Controlling a signal tower via Modbus RTU on Azure IoT Edge and blogs about Azure IoT Edge and Azure IoT Operations, the Edge of Tomorrow
📚 Learning
- Gretchen La Belle writes - The AI job boom continues: Build the skills that move business forward
- An Bordianu runs through some Course Retirement Announcements
- Kavitha Radhakrishnan discusses The moment AI skilling stopped being optional—and started being personal
- Robin Baldwin provides the MSLE Newsletter - April 2026
- Radu Vunvulea (@RaduVunvulea) writes: From cloud-first to AI-Native - the certification Shift
⚖️ Management and Governance
- The Azure Updates Team announces Microsoft Azure now available from new cloud region in Denmark (GA) and highlights a Retirement: Deprecation of sidecar for remote-write for Azure Monitor managed service for Prometheus
- Anuradha A. writes about One Script to Export All Azure SQL Whitelisted Public IPs Within Your Subscription
- Shivani Thadiyan discusses AI-Assisted Azure Infrastructure Validation and Drift Detection
- Blesson John announces Advanced Resource Sets in Microsoft Purview Unified Catalog (GA)
- Dheeraj Bandaru announces AWS with Azure SRE Agent: Cross-Cloud Investigation using the brand new AWS DevOps Agent
- Siddhi Gupta writes From Toil to Trust: How Azure SRE Agent Is Redefining Cloud Operations
- Zoran Jovanovic provides the Proactive Reliability Series - Article 1: Fault Types in Azure
- Jesse Lopez explains how to Simplify troubleshooting at scale - Centralized Log Management for CycleCloud Workspace for Slurm
- Shafiq Mannan discusses Microsoft Purview Data Quality Thresholds: More Control, More Trust
- Tobias Zimmergren (@zimmergren) announces the Azure Startup Credits Visualizer
- Dieter Gobeyn describes why Rate Limiting Is a Governance Control, Not a Performance Trick
- Abhinav Premsekhar covers how to Gain Visibility into Cloud Browser Usage with Browser Activity Logs in Playwright Workspaces
- Princy Rajpoot covers Migrating Azure SQL Database Across Tenants Using Subscription Transfer
- Abhilasha Sr covers Subscription Vending in Azure: An Implementation Overview
- Zachary Cavanell talks about why Labeling Files is Worth It - Speed & Protection Benefits in Microsoft Purview
- Michael Bruhjell announces that you can now Get notified when scheduled jobs fail in Fabric (Generally Available)
- Deepthi Chelupati highlights that Azure SRE Agent now supports multiple model providers, including Anthropic Claude
- Mayunk Jain writes about An update to the active flow billing model for Azure SRE Agent
- Sarim Aziz describes How we build Azure SRE Agent with agentic workflows
- Kumar Amit talks about Enterprise-Scale Azure Subscription Vending Using Azure Verified Modules (AVM)
- Igal Figlin delves into Azure IaaS: Keep critical applications running with built-in resiliency at scale
- Ken Hoover walks through Demystifying On-Demand Capacity Reservations
🎬 Media
- Peter Br highlights that Azure Maps Adds Support to Private Endpoints (Preview)
🚌 Migration
- Johan Aussenac discusses Replicating solutions to Azure: The business case, the incentives and how to get there fast
- On IT Next, Dave Rendon provides The VMware Admins Complete Playbook: Migrating to Azure with Confidence Using Azure Migrate, IaaS
- Pablo Lopes writes about What AI Agents for Modernization Look Like in Practice
- Sakshi Malhotra describes AWS to Azure Migration - From the Cloud Economics & FinOps Lens
- The Intune Support Team covers Migrating frontline mobile devices: A frontline-first approach to moving to Microsoft Intune
- Dr Ravi Nagvekar discusses Model Upgrade and Migration Strategy for Microsoft Foundry
- Teneil Lawrence writes about No code left behind: How AI streamlines Oracle-to-PostgreSQL migration
- Shikher Saluja writes From Discovery to Executive Presentation: Plan Your Migration with Azure Migrate in Hours
- D. Malbrough covers Unlocking AI-Ready Unstructured Data at Scale with Komprise and Azure
🌐 Networking
- The Azure Updates Team announces Unlock Client-Side Configuration at Scale with Azure App Configuration and Azure Front Door (Public Preview) and highlights a Retirement: Manually registered Azure VPN Clients for Azure Government and Microsoft Azure operated by 21Vianet clouds will be retired on March 31, 2029
- Kumar Amit writes about General Availability of Private Application Gateway on Azure Application Gateway v2
- K. Kaushal writes about: AKS cluster with AGIC hits the Azure Application Gateway backend pool limit (100) and about Secure HTTP-Only AKS Ingress with Azure Front Door Premium, Firewall DNAT, and Private AGIC
- Graeme Foster talks about Foundry Agents and Custom Engine Agents through the Corporate Firewall
- Paula Berenguel writes about Bidirectional Replication with pglogical on Azure Database for PostgreSQL - a VNET guide
🔐 Security
- Dave Rendon describes How Microsoft Is Securing AI Agents Across Identity, Data, Threats, and Compliance: A Complete Guide
- Ayelet Artzi writes From Vulnerability Fatigue to Action: How SKF Operationalized MDVM with a Custom Dashboard
- Yura Lee blogs about Microsoft Defender for Cloud Customer Newsletter
- M. Casgrain highlights that A third-party connector integrating Claude with Microsoft Sentinel is now available
- Avi Sharma discusses Breached in 86 seconds: How AI Workloads Become Credential Dispensers
- Manoj Raheja announces public preview of custom graphs in Microsoft Sentinel
- Nikita Chhabra explains how to Accelerate connectors development using AI agent in Microsoft Sentinel
- On the Azure blog, Philippe Rogge walks through Navigating digital sovereignty at the frontier of transformation
- Kevin Friedemann discusses Crawl, Walk, Run: A Practitioner's Guide to AI Maturity in the SOC
- Chris Vetter blogs about Implementing Intune RBAC and Scope Tags for Zero Trust and Least Privilege
- Yonatan Zunger discusses Applying security fundamentals to AI: Practical advice for CISOs
- Priyanka Agarwal provides a series -
Part 1: Understanding Agent Abuse Patterns: Designing Secure AI Agents from Day One,
Part 2: Securing AI Agents with Azure AI Foundry: From Abuse Patterns to Lifecycle Controls
and Part 3: DSPM for AI: Governing Data Risk in an Agent-Driven Enterprise - Sumiran Tandon describes Workspace Customer-Managed Keys for BYOK in Microsoft Fabric (Preview)
- Tao Yang (@MrTaoYang) discusses Policy Integration Testing Framework in AzPolicyFactory
📦 Storage
- The Azure Updates Team announces Azure NetApp Files storage with cool access enhancement (Public Preview) and highlights a Retirement: AzureDnsEndpoints for Azure storage accounts will be retired March 2027
🔗 Web
- The Azure Updates Team highlights a Retirement: Python support for Azure App Service and Azure Functions on Windows will be retired on March 31, 2027
- Byron Tardif (@bktv99) explains how to Continued Investment in Azure App Service
- Luke Murray (@lukemurraynz) explains how to Remove Build-Time Environment Variables with Azure App Configuration with Front Door for Static Web Apps
- Mark Heath (@mark_heath) discusses Securing Back-end App Service Web Apps with Private Endpoints