DevOps Platform Updates
scanned 111d ago6Latest announcements and changes from GitHub, GitLab, Azure DevOps, Bitbucket, and Atlassian.
Azure DevOps Retiring Global PATs, Blocking Starts March 15
Azure DevOps Sprint 270 announces retirement of global Personal Access Tokens (PATs) to strengthen credential governance. Creation and regeneration of global PATs will be blocked on March 15, 2026, with full decommission on December 1, 2026. Teams using global PATs for integrations—including any Veeam backup or data-protection connectors—must migrate to organization-scoped PATs or Microsoft Entra-based auth before the cutoff.
GitHub Secret Scanning Adds 28 Detectors, Expands Push Protection
GitHub's March 2026 secret scanning update adds 28 new secret detectors from 15 providers including Snowflake, Vercel, and Supabase. Additionally, 39 detectors now have push protection enabled by default, covering Airtable, Databricks, Heroku, PostHog, and Shopify. This broadens automated secret leak prevention across the GitHub ecosystem.
Azure DevOps Now Logs Push Protection Bypass Events in Audit
Sprint 270 adds audit log entries when developers bypass push protection to push detected secrets. Entries include the repository, secret type, and user identity. This gives security teams and org admins a complete record for incident investigation and policy enforcement—directly relevant to DevOps data protection compliance posture.
GitHub Copilot Coding Agent for Jira Enters Public Preview
Teams can now assign Jira issues to GitHub Copilot's autonomous coding agent, which analyzes issue context, implements changes independently, and opens draft pull requests in GitHub. The agent posts updates and asks clarifying questions directly in Jira. This cross-platform AI integration signals growing agent-driven automation in the DevOps workflow layer.
GitHub Dependabot Adds Native Pre-commit Hook Update Support
Dependabot now natively manages dependency updates for pre-commit hooks. It parses .pre-commit-config.yaml, checks hook repositories for new releases, and opens PRs to update rev fields. Supports tag and SHA-based revisions, grouped updates, and multi-host hooks across GitHub, GitLab, and Bitbucket. Strengthens automated supply-chain hygiene.
GitHub Actions Self-Hosted Runner v2.329.0 Enforcement March 16
GitHub Actions will block registration of self-hosted runners older than v2.329.0 starting March 16, 2026. Brownout periods are actively running through March 16 with scheduled configuration blocks. Organizations running CI/CD on self-hosted infrastructure must update all runners, images, and ARC containers before the deadline to avoid workflow disruptions.