Showing results for 1ES - Engineering@Microsoft

Sep 25, 2024
0
0

Common annotated security keys

Michael C. Fanning
Michael C. Fanning

In April 2021, GitHub announced changes to their security token format that significantly enhanced security. The improvement leveraged two straightforward techniques: a fixed signature in the generated token and a checksum - both of which are highly effective in eliminating false positives (noise) and false negatives (missed findings). Microsoft a...

Aug 24, 2023
0
2

Your Most Important Git Repos

Bryan Sullivan
Bryan Sullivan

What do you keep in your Git repos? Source code for your production applications certainly, but you probably also keep a fair amount of experimental and “hackathon” code. Maybe you keep your documentation in Git. Maybe, like the District of Columbia does, you even keep legal documents there. So which of these are the most important to protect? Fro...

May 23, 2023
4

Microsoft Dev Box for Microsoft engineers

Josh Zimmerman
Josh Zimmerman

We’re in an exciting time for technology. But to take advantage of the opportunities, it’s critical for developers to have access to the tools and resources that can help them stay productive and do their best work. At Microsoft, we’re migrating many of our developers to highly productive…

May 22, 2023
0
4

The Journey to Secure the Software Supply Chain at Microsoft

Adrian Diglio
Adrian Diglio

A secure software supply chain represents another facet of Microsoft's built-in security to enhance and maintain trust in our products. It’s a continuation of the journey we embarked upon since the launch of Security Development Lifecycle (SDL) in 2004 and represents our commitment to continually enhance Microsoft’s foundational security.

Mar 15, 2023
0
0

Implementing an accessible, checkable WPF Tree View

Sarah Oslund
Sarah Oslund

The Accessibility Insights team recently fixed a bug in our Windows Presentation Foundation (WPF) app where checkboxes in a WPF tree view were not properly reporting their checked or unchecked state to adaptive technologies such as screen readers. This longstanding issue created a sub-par accessible experience in Accessibility Insights for Windows,...

Dec 15, 2022
2

Learnings from migrating Accessibility Insights for Web to Chrome’s Manifest V3

Sarah Oslund
Sarah Oslund

Since February 2022, the Accessibility Insights team has been migrating Accessibility Insights for Web–our Chrome and Edge extension introduced in Jacqueline's February 14, 2022, post from Manifest V2 (MV2) to Manifest V3 (MV3). We wanted to share learnings and takeaways from our migration journey with a walkthrough…

Jul 12, 2022
3
3

Microsoft open sources its software bill of materials (SBOM) generation tool

Danesh Kumar Badlani Adrian Diglio
Danesh,
Adrian

We are excited and proud to open source our software bill of materials (SBOM) generation tool. A key requirement of the Executive Order on Improving the Nation's Cybersecurity, SBOMs are lists of ingredients that make up software components, providing software transparency so organizations have insight into their supply chain dependencies. Our S...

Feb 14, 2022
0
0

Accessibility Insights for Web

Jacqueline Gibson
Jacqueline Gibson

In this post, Jacqueline Gibson goes over Accessibility Insights for Web, Microsoft's open-sourced Chrome and Edge extension that helps users find and fix web accessibility issues.

Feb 1, 2022
0
2

Improving developer productivity via flaky test management

Suresh Thummalapenta
Suresh Thummalapenta

Flaky tests are a well-known problem across the industry and Microsoft is no exception. In this post, Suresh Thummalapenta walks us through the team's comprehensive flaky test management system that helps to infer, triage, and quarantine those tests.

Dec 13, 2021
1
1

Accessibility Insights for Windows

John Alkire
John Alkire

In this post, John Alkire walks through the features of Accessibility Insights for Windows, which enables users to inspect and test Windows applications to find and fix accessibility issues.