Whew, in addition to the day job, I've been hacking on some open source this week. So I've been thinking a lot about my favorite things about Azure Pipelines that helps out with OSS. So it's been a busy week, and I'm looking forward to the weekend. But first, I wanted to share some of this week's great stories from the community.
When I became a Program Manager, I gave up writing software for a living. So I did what many programmers do when faced with such a dilemma: I started working on open source software in my spare time. One of the projects that I work on is called libgit2.
Do you own a GitHub repository? Do you create releases on GitHub to distribute software packages? Do you manually compile a list of changes to be included in release notes? If yes, you will be excited to know that you can now automate creation and modification of GitHub Releases directly from Azure Pipelines. This can be done through the GitHub Release task that is now rolled out to all users.
Azure Pipelines has supported container jobs for a while now. You craft a container with exactly the versions of exactly the tools you need, and we'll run your pipeline steps inside that container. Recently we expanded our container support to include service containers: additional, helper containers accessible to your pipeline.
Today, we released Azure DevOps Server 2019 RC2. This is our last planned prerelease before our final release of Azure DevOps Server 2019. RC2 includes some new features since RC1. You can upgrade from Azure DevOps Server 2019 RC1 or previous versions of TFS. You can find the full details in our release notes.
Lots of big news coming from the Azure DevOps team this week: we've announced a bounty for security researchers and announced a partnership with Service Now. But there's also some great reading coming from the Azure DevOps community - here's some of the nice articles that I found this week.
It is my pleasure to announce another exciting expansion of the Microsoft Bounty Programs. Today, we are adding a security bug bounty program for Azure DevOps in partnership with the Microsoft Security Response Center (MSRC) to our suite of Bounty programs.
In DevOps ecosystem, choice of systems and collaboration between cross-functional teams is critical. Incidence response and change management are key DevOps activities. ServiceNow is a market leader for IT service management, and we are delighted that Azure Pipelines and ServiceNow have partnered together for an integration of Azure Pipelines with ServiceNow Change Management.
Today, we are releasing updates for a cross site scripting (XSS) vulnerability and an issue where in some instances task groups may incorrectly show variables that are marked as secret. Team Foundation Server 2017 and 2018 are impacted. We have released patches for TFS 2017 Update 3.1 and TFS 2018 Update 1.2. We have also released TFS 2018 Update 3.2, which is a full install that includes these fixes.
Welcome back Microsoft developers and DevOps practitioners; I hope you had a great new year! Me? I took some time off to recharge the batteries and I'm glad I did because — wow — even though it's just the beginning of 2019, there's already some incredible news coming out of the DevOps community.