Get Azure cost estimates in Azure DevOps PR comments with Bicep

ACE ADO

Shifting FinOps left Not too long ago, I discovered an open source project on GitHub called InfraCost. It aims to help cloud teams shift left FinOps by helping provide Terraform Azure cost estimations, into Pull Request comments within GitHub/Azure DevOps, including a fancy VS Code extension. And whilst I was excited to try it out, …

APIOps – A deep dive for APIM multi-environments

APIOps feature image

What is APIOps? APIOps is the process of applying DevOps to the Azure API Management (APIM) service. By applying this concept to APIM, you can bring your APIs into version control, and most of the operations that were once done in the Azure Portal can now be achieved through code using CI/CD pipelines with APIOps. The benefits of this method of working …

Getting started: Continuous deployment with Azure Bicep and Azure DevOps

Continuous deployment with Azure Bicep

Introduction – continuous deployment with Azure Bicep Continuous deployment with Azure Bicep using Azure DevOps provides a streamlined approach to deploying your resources. This method leverages Infrastructure as Code, harnessing the power of Azure DevOps tools such as source control, Azure Pipelines, and Azure Artifacts, all while maintaining environment control and auditing. In this article, …

Eliminate old API versions in your Azure Bicep templates

Bicep old API versions

Introduction Eliminate old API versions in your Azure Bicep templates – did you know we can leverage the linting features within the bicepconfig.json file to notify you when old ARM API versions are detected? It can be a great addition to your Azure Bicep repository to ensure all cloud engineers can keep track of older …

Azure DevOps Agent: Azure Container Instance with Private Azure Container Registry

Private Azure DevOps self hosted agent on ACI

Introduction – Private Azure DevOps agent If you’re using Azure DevOps as your source control and deployment tooling, you may need to perform CI/CD to Azure resources that have no public access and are on private endpoints. This can pose a particular challenge, as unlike GitHub private runners, which can natively run within the private …

Compliance with Azure Bastion: Session recording

Session recording feature

Introduction On May 30th, 2024, Microsoft announced Azure Bastion Premium, featuring the highly anticipated session recording capability. This feature, long requested since Bastion’s general availability in November 2019, marks a significant enhancement. In my view, session recording is an essential addition to Bastion, as it provides superior compliance and security. It enables the direct recording …

Fixing workload identity federation conversion failures in Azure DevOps

Azure DevOps Service Principal to Federated identity conversion

Introduction Microsoft released into public preview in Q4 last year, workload identity federation service connections for Azure DevOps. This was very welcomed, as it greatly improves your security posture by using short-lived authentication tokens with no persistent secret to manage. For the most part, all my Service Principals to workload identity conversions in Azure DevOps …

Skip to content