Azure Weekly

Issue #560 - 26th April 2026

Starting with AI, the highlights this week are: some interesting real-world applications: Modernizing Industrial Safety and Inspection with AI-Driven Drone Automation: a reference Azure architecture pairing deterministic computer vision with generative AI reasoning to scale industrial inspection scenarios such as bolt integrity. GPT Capability in Understanding Coordinates: How GPT-5.4 Transforms Spatial Precision: a bounding-box benchmark on CAD-style images shows GPT-5.4 hits ≥0.99 IoU first try, removing the prompt-engineering workarounds GPT-5.2 needed. Extracting BOMs from Electrical Drawings with AI: Azure OpenAI GPT-5.4 + Azure Document Intelligence: a five-stage pipeline combining Document Intelligence and GPT-5.4 reaches 94.21% accuracy extracting Bills of Materials from electrical single-line diagrams.

CodeAct in Agent Framework: Faster Agents with Fewer Model Turns: the alpha agent-framework-hyperlight package runs model-generated Python in a per-call Hyperlight micro-VM, cutting latency ~52% and tokens ~64% in benchmarks. Prompt Engineering for Spec-Driven Development with SpecKit: experiments across 10 prompt formulations show natural-language, authoritative prompts with model-readable outputs deliver substantially better SpecKit results.

Designing Outbound Connectivity for Private Subnets in Azure: a decision framework comparing NAT Gateway, Azure Firewall and Load Balancer outbound rules now that default outbound access has been retired. Entra Workload Identity on AKS: No More Secrets: a walkthrough for replacing Kubernetes client secrets with federated OIDC trust between AKS service accounts and Azure managed identities, including Bicep and Terraform examples. AKS App Routing's Next Chapter: Gateway API with Istio: the preview replacement for the NGINX-based add-on uses a lightweight Istio control plane and Kubernetes Gateway API, with migration steps via ingress2gateway.

The Unified SecOps Transition — Why It Is a Security Architecture Decision, Not Just a Portal Change: frames the March 2027 Sentinel portal retirement as a shift to a 2-tier data architecture, Sentinel Graph and MCP-based agents underpinning the agentic SOC. Azure landing zones & Sovereign landing zones: a new lab series covering Azure and Sovereign landing zones, the ALZ Accelerator, Azure Verified Modules and custom libraries.

Finally, Fabric Performance Benchmarking - Spark versus Python Notebooks: on Microsoft Fabric, DuckDB and Polars on Python notebooks consistently outperform PySpark while being 4–5× cheaper for medium-scale workloads. Medallion Architecture in Excel: reframes Excel's three-tab rule (Source / Logic / Interface) as a Bronze / Silver / Gold mini-pipeline, applying data engineering principles to spreadsheets.

⚙️ AI + Machine Learning

Eduard van Valkenburg writes CodeAct in Agent Framework: Faster Agents with Fewer Model Turns
Aseem Datar (@aseemd) discusses Microsoft Discovery: Advancing agentic R&D at scale
Jesse Sullivan walks through Introducing Azure Accelerate for Databases: Modernize your data for AI with experts and investments
Bruno Lucas describes The Difference between Azure AI Foundry Hosted Agents, InProcess Agents SDK and Copilot Studio Agents
Hazem Ali covers Building an Auditable Security Layer for Agentic AI
Ji hye Seo covers GPT Capability in Understanding Coordinates:How GPT-5.4 Transforms Spatial Precision and Extracting BOMs from Electrical Drawings with AI: Azure OpenAI GPT-5.4 + Azure Document Intelligence
Ngozi Nwoko explains how to Get ahead of agent sprawl: manage and govern AI agents at scale
Lee Stott explains how to Stop Experimenting, Start Building: AI Apps & Agents Dev Days Has You Covered
Amit Mukherjee et al explains how to Automate Prior Authorization with AI Agents - Now Available as a Foundry Template
Lo Kinfey (@Ljh8304) writes about When Anthropics Managed Agents Meet Microsoft Hosted Agents
Bruno Lucas covers The Difference between Azure AI Foundry Hosted Agents, InProcess Agents SDK and Copilot Studio Agents
Vladislav Guzey describes GitHub Copilot Agents: Everything You Need to Know
Rashaud Savage: Introducing Kimi K2.6 in Microsoft Foundry
risthakur1213 discusses Building an Enterprise HR Chatbot with Multi-Strategy RAG and Live Agent Handoff on Azure
Vincent Giraud talks about Microsoft 365 multi-agent workflow with Microsoft Agent Framework
Lee Stott writes about From Demo to Production: Building Microsoft Foundry Hosted Agents with .NET
Naomi Moneypenny blogs about OpenAIs GPT-5.5 in Microsoft Foundry: Frontier intelligence on an enterprise ready platform
Naomi Moneypenny describes Introducing OpenAI's GPT-image-2 in Microsoft Foundry
sgangaramani writes about Three tiers of Agentic AI - and when to use none of them
Pamela Dingle blogs about Microsofts perspective on agentic identity standards
Peter Lee discusses Modernizing Industrial Safety and Inspection with AI-Driven Drone Automation
Ayca Bas talks about Claim your IQ Series: Foundry IQ badge

🔎 Analytics

On Microsoft Fabric Blog, Mehrsa Golestaneh describes Evolving Agentic Applications on Microsoft Fabric: From Automated Deployment to Integrating Data Agents, Xu Jiang discusses Stream SQL Change Events to Microsoft Fabric Eventstream with Change Event Streaming for Real-Time Analytics, Premal Shah writes about Nested folders support in shortcut transformations Generally Available, Harmeet Gill blogs about Resource instance rules for OneLake in Microsoft Fabric Preview, Ruixin Xu discusses Cross-workspace logging for MLflow in Microsoft Fabric: Build MLOps workflows with confidence Generally Available and Marisa Mathews describes Fabric Influencers Spotlight April 2026
Barry Smart (@barry_j_a_smart) blogs about Fabric Performance Benchmarking - Spark versus Python Notebooks
James Broome (@jamesbroome_) describes the Medallion Architecture in Excel
On the MSSQL Tips site, Koen Verbeeck (@Ko_Ver) explains how to Improve Query Performance in the Fabric Warehouse with Clustering
Jeevan Krishna Paruchuri writes about Kafka vs Azure Event Hubs: The Tradeoffs You Only See in Production
Sander van de Velde (@svelde) discusses Maps for Fabric is now generally available, including new features
Subhajit1994 covers Designing a Medallion Framework - A Decision Guide
Dave Rendon (@DaveRndn) blogs about Microsoft OneLake: The Unified Data Lake That Eliminates ETL, and Powers Your AI Agents.
David Levy describes mssql-django 1.7.1: Microsoft Fabric Support and Migration Fixes
Penny Zhou explains how to Orchestrate dbt jobs activity in your Fabric pipelines Preview
Mohamed Baioumy discusses Azure Data Sync: Fixing Cannot find the user DataSyncexecutor When Creating a New Sync Group
Lara Vannut explains how to Meet Max Porter: The Migration Agent that Gets You Off Synapse Without the Drama
Bodhisatva Gautam covers Outbound access protection for Data Factory Generally Available

🖥️ Compute

Alberto Santamaria-Pang discusses Reimagining Cancer R&D with Agentic AI Using GigaTIME in Microsoft Discovery
Also on Tech Community blog, jeresmith describes SharePoint Automatic Version History Cleanup Intelligent Versioning
Ricardo Martins (@ricmmartins) writes about Your Azure VM went down and nobody knew why. Here's how to fix that.
Jon Andoni Baranda writes about AI-Powered Downtime Investigation for Azure VMs: Automating Root Cause Analysis
Dan Cuomo announces Windows Admin Center: Virtualization Mode Public Preview 2
Vikas Gupta explains How to Troubleshoot Azure Functions Host Startup Issue

🚢 Containers

The Azure Updates Team announced Launched Generally Available: WireGuard InTransit Encryption for Azure Kubernetes Service AKS
Adam Bertram (@adbertram) blogs about Entra Workload Identity on AKS: No More Secrets
Natasha Polito discusses Simplifying gMSA for Windows Containers on AKS: Open-Source Tooling Now Available
Johnson Shim explains How ACR Artifact Cache Handles Multi-Arch Images: What Gets Cached and When Webhooks Fire
Houssem Dellai (@HoussemDellai) describes Running multimedia AI models on Container Apps with Serverless GPU A100 & T4
Sam Cogan (@samcogan) writes about AKS App Routing's Next Chapter: Gateway API with Istio

🗄️ Databases

The Azure Updates Team announces Launched Generally Available: Dynamic data masking with Azure Cosmos DB, announces Launched Generally Available: Azure Database for PostgreSQL flexible server in Denmark East, announces Launched Generally Available: Premium SSD v2 for Azure Database for PostgreSQL, announces In preview Public Preview: Migrating from virtual network-integrated to Private Endpoint–capable network configuration, announces In preview Public Preview: Logical replication slot sync Status metric for Azure PostgreSQL Flexible Server, announces Launched Generally Available: Enhanced Mirroring Azure Database for PostgreSQL in Microsoft Fabric and announces Launched Generally Available: Cascading read replicas in Azure Database for PostgreSQL
Akio Hose discusses Data Migration - From SQL MI to SQL DB migration
On IT Next, Dave Rendon (@DaveRndn) explains How Veeam Built Planet-Scale Semantic Search on Azure Cosmos DB.
Ebru Aydin discusses Connection Scaling in Elastic Clusters
Silvano Coriani writes about General Availability Refresh: Mirroring Azure Database for PostgreSQL in Microsoft Fabric
Dave Rendon (@DaveRndn) talks about Oracle Database at Azure: The Complete 2026 Technical Deep Dive Into Sub 200 Microsecond Multi
Abdullah Qtaishat talks about Fix failover group creation errors with TDE CMK on Azure SQL Managed Instance and describes How to recover Azure SQL Managed Instance access when the admin SQL login is disabled
Ahmad Daoud describes How to take copy only backups with SQL Managed Instance.
Soma Sekhara Kolanavada talks about Leveraging Azure Resource Graph Queries for Azure Redis Configuration
Mohamed Baioumy talks about Azure SQL LTR:You Dont Need to Copy LTR Backups Across Regions to Restore Them

🛠️ Developer Tools

The Azure Updates Team announces Launched Generally Available: Foundry Toolkit for Visual Studio Code formerly AI Toolkit for VS Code
Jeffrey Palermo (@jeffreypalermo) chats to Pierce Boggan: AI Workflows - Episode 398
Karl Abbott covers Getting Started with the SUSE Multi-Linux Manager MCP Server and GitHub Copilot
Lee Stott writes about VS Code Agents Insiders: The AI-First Editor Built for Developers and Students
Adrian Bridgwater explains how to Eclipse Foundation offers enterprise-grade open source alternative to Microsofts VS Code Marketplace
Paul Sawers discusses Roo Code pivots to cloud-based agent, says IDEs arent the future of coding
syedarshad writes From Playwright Automation to Agent Driven Testing GHCP in Action
Charlotte Yeo writes about Prompt Engineering for Spec-Driven Development with SpecKit
Erik Ejlskov Jensen writes about Visual Schema Compare for SDK Style SQL Database Projects in Visual Studio and SSMS

🔩 DevOps

Adam Bertram (@adbertram) talks about Migrating Azure DevOps to GitHub Enterprise: The ROI Case
On the Azure Citadel blog, Richard Cheney (@RichCheneyAzure) covers Azure landing zones & Sovereign landing zones
Richard Fennell (@richardfennell) writes about Duplicated IP addresses give strange error when deploying Hyper-V environments
Azat Galiev describes Optimizing Git policy management at scale
Dan Hellem covers Azure DevOps MCP Server April Update
Josef Sin discusses Axios npm Supply Chain Compromise – Guidance for Azure Pipelines Customers
Panagiotis Liaros talks about Public Preview: Actual Result for Manual Tests in Azure Test Plans
Kikumar writes about High Availability Testing in Azure
Nikhil Viswanathan talks about Customer review: TestMu AI HyperExecute is a game changer
Wendy Haddad describes How Microsoft Planner helped build the Maia 200 AI Accelerator
The Intune Support Team writes about As vulnerability discovery moves at AI speed, keeping current is foundational to reduce exposure
Sarah Lean (@TechieLass) blogs about Deploying to Multiple Azure Subscriptions with Terraform Provider Aliases
Thomas Thornton (@tamstar1234) explains how to Terraform Module Design Is the Hard Part – So I Built an Agent Skill for It

⚙️ Hybrid + Multicloud

The Azure Updates Team announces In preview Public Preview: Azure Arc adds SQL Server on Azure Virtual Machines as a migration target and announces Launched Generally Available: Azure Monitor for Azure Arc-enabled Kubernetes with OpenShift and Azure Red Hat OpenShift
Moaz Mirza describes Enabling Agentic Data Governance with Hybrid Cloud Flexibility in Azure

🎭 Identity

Damien Bowden (@damien_bod) explains how to Remove sign-up from Entra External ID user flows
Balaji Ranganathan talks about Entra ID Login via Azure Bastion Fails After VM Recreation
Joseph Dadzie writes about Now generally available: License usage insights in Microsoft Entra
Frederic Lardinois (@fredericl) writes about Why Microsoft is betting on temporary identities to stop autonomous agents from going rogue
Randall Irwin covers Modernizing Digital Health Record Governance with Microsoft Entra Identity Governance
Anusha Ammaluru writes about Automatic SSO Takeover in Azure AD B2C Custom Policies

🔌 Integration

David Giard (@DavidGiard) covers Eldert Grootenboer on Reliability in Azure Messaging
Gyanendra Kumar Gautam describes April 20, 2026 — AI is Reshaping Microsoft Integration. Heres What Actually Matters This Week
Harold Campos (@hcamposu) talks about Service Bus SBMP Retirement: What BizTalk Server 2020 Customers Need to Know
James Nguyen blogs about Deploying an Agentic Service to Microsoft 365 Copilot with Delegated OBO Access
Mohammed Barqawi discusses Network Connectivity Check APIs for Logic App Standard
Pravin T. walks through Breaking the Shackles of Legacy Portals: Power Pages as Enterprise SaaS

💡 Internet of Things

Soyoung Lee blogs about The Network That Outlived Him: How MVP Min-gyu Ju's Community Keeps His Legacy Alive

📚 Learning

Liberty Munson writes about New Microsoft Certified: AI Agent Builder Associate Certification
Surya Narayana explains How can you stay competitive and relevant in an AI-Driven World
Tobias Zimmergren & Jussi Roine (@CtrlAltAzure) chat about Microsoft Tech Updates (Episode 339)
Cristina Gonzalez Herrero writes about High Expert Summit 2026 - United by Community, Cloud, and AI
Galimah B. discusses Host a Microsoft Build //local host Event in Your City
Lee Stott writes about If You're Building AI on Azure, ECS 2026 is Where You Need to Be
Pierre Roman covers The Microsoft Azure Infra Summit 2026 Schedule Is Live.
Julio Colon discusses Design tenant linking to scale selling on Microsoft Marketplace
Lee Corbett blogs about Microsoft Marketplace 101: Insights from high performing software development company sellers
Pamela Fox explains how to Join our free livestream series on hosting agents in Microsoft Foundry

⚖️ Management and Governance

The Azure Updates Team announces In preview Public Preview: Azure Monitor supports native OTLP ingestion using the Azure Monitor Agent and announces Launched Generally Available: Azure Monitor pipeline
Adam Bertram (@adbertram) talks about Fix Azure Cost Reporting with a FinOps Tagging Strategy
Aditya Kumar discusses Azure Monitor Pipeline: A Modern Approach to Telemetry Ingestion at Scale
Aditya Mukund discusses Tenant Configuration Management APIs are now generally available
George Smyrlis writes about From Oversharing to Enforcement: A Practical Guide to AI Data Security with Microsoft Purview
Julio Colon explains how to Integrate Marketplace commerce signals to enforce entitlements in AI apps
Kayode Prince talks about Troubleshoot with OpenTelemetry in Azure Monitor - Public Preview
Xema Pathak explains how to Ingest at Scale, Securely — Azure Monitor pipeline Is Now Generally Available
Jeevan Krishna Paruchuri writes How I Cut Our Cloud Bill by 40% Without Touching a Single Data Model
Ricardo Martins (@ricmmartins) blogs about The flat-subscription problem
Samsul Ahamed describes Detecting PlainText Password Exposure Using Custom Regex in Microsoft Purview

🚌 Migration

On the Microsoft Cloud IT Pro Podcast, Ben & Scott talk about Episode 426: Claude Cowork vs Microsoft 365 Copilot Cowork

🌐 Networking

Jose Moreno (@erjosito) writes about Private global load balancing in Azure with anycast no BGP
Chaminda Chandrasekara explains how to Handle Nginx Gateway Certificate Refresh While Inplace Upgrade in AKS
Aimee Littleton writes about Private subnets by default in Azure Virtual Networks: What changed and how to use NAT Gateway
Alexey Nazarov talks about Designing Outbound Connectivity for Private Subnets in Azure
Kiran Kumar Manchiwar covers Azure VNet Data Gateway for Secure Power BI & Power Platform Access in Enterprises and blogs about Enhancing Enterprise AI Deployments with Zero Trust Networking
pankajag talks about Troubleshooting Microsoft Foundry Accessing OnPremises APIs Over Private Networking
Dieter Gobeyn explains how to Calculate your Azure Private Endpoint IPs Automatically Free PowerShell Script
Piotr Kolodziej walks through Connecting AWS and Azure with a Site-to-Site VPN Using Terraform

🔐 Security

Aaron Thorp covers Safeguarding Sensitive Data in Microsoft 365 Copilot Interactions: DLP for Microsoft 365 Copilot
Andreas Kapetaniou talks about Introducing the Microsoft Sentinel Training Lab. Hands-On Security Operations in Minutes
Bhalchandra Atre talks about Modernizing DNS Security for Exchange Online Mail Flow
Farooque Mohammad covers Strengthening Identity Resilience: A Deep Dive into Microsoft Entra Backup and Recovery
Mohit Kumar covers The Unified SecOps Transition — Why It Is a Security Architecture Decision, Not Just a Portal Change
Tiffiany provides A Practical Look at Device Analytics and Risk Signals with Microsoft Intune
Aditya Kumar describes How AI Agents Are Turning Threat Intelligence Into Validated Detections

📦 Storage

The Azure Updates Team announces In preview Generally Available: Azure NetApp Files advanced ransomware protection, announces Launched Generally Available: CRC Protection and announces In preview Public Preview: Azure Backup for Elastic SAN
Priyanka Gangal writes about Secure, Keyless Application Access with Managed Identities - Now GA in Azure Files SMB
Sourabh Jain talks about Leveraging Azure Resource Graph Queries for Azure Storage Configuration
Sesha Mani blogs about Microsoft 365 Copilot readiness and resiliency with SharePoint and M365 Backup/Archive
Bapi Chakraborty explains how to Simplify On-prem File share Migration to Azure: Discover & assess suitability using Azure Migrate

🔗 Web

The Azure Updates Team announces Retirement: Support for .NET 8 LTS ends on November 10, 2026: upgrade your apps to .NET 10 LTS
Gregor Suttie (@gregor_suttie) discusses Creating a GitHub Copilot CLI Release Tracker
On IT Next, Luca Zavarella walks through Deploying Streamlit on Azure App Service looked easy. Then it broke.
sbaskaran discusses Centralizing Enterprise API Access for Agent-Based Architectures
Michelle Yau discusses NFS Permission Denied in Azure App Service on Linux: What It Means and What to Do

⚙️ Azure Virtual Desktop

Akash Mishra covers Azure Virtual Desktop in the Perth Azure Extended Zone: A RealWorld Production Deployment
Rinku Dalwani announces public preview of redundant TCP support for RDP Multipath for Azure Virtual Desktop