Guidelines for applications to validate user-provided URIs for Azure Key Vault or Managed HSM to avoid a potential risk of leaking authentication information.
Developers hate waiting, but sometimes it's necessary. When we know something is going to take time in Azure, it's modeled as a long-running operation (LRO). We've recently updated our guidance on LROs in our REST API guidelines.