Engineering@Microsoft
Microsoft
Wed Sep 25 2024
Common annotated security keys
In April 2021, GitHub announced changes to their security token format that significantly enhanced security.
Thu Aug 24 2023
Your Most Important Git Repos
What do you keep in your Git repos? Source code for your production applications certainly, but you probably also keep a fair amount of expe...
Tue May 23 2023
Microsoft Dev Box for Microsoft engineers
We’re in an exciting time for technology.
Mon May 22 2023
The Journey to Secure the Software Supply Chain at Microsoft
A secure software supply chain represents another facet of Microsoft’s built-in security to enhance and maintain trust in our products.
Wed Mar 15 2023
Implementing an accessible, checkable WPF Tree View
The Accessibility Insights team recently fixed a bug in our Windows Presentation Foundation (WPF) app where checkboxes in a WPF tree view we...
Thu Dec 15 2022
Learnings from migrating Accessibility Insights for Web to Chrome’s Manifest V3
Since February 2022, the Accessibility Insights team has been migrating Accessibility Insights for Web–our Chrome and Edge extension introdu...
Tue Jul 12 2022
Microsoft open sources its software bill of materials (SBOM) generation tool
We are excited and proud to open source our software bill of materials (SBOM) generation tool.
Mon Feb 14 2022
Accessibility Insights for Web
In this post, Jacqueline Gibson goes over Accessibility Insights for Web, Microsoft's open-sourced Chrome and Edge extension that helps user...
Tue Feb 01 2022
Improving developer productivity via flaky test management
Flaky tests are a well-known problem across the industry and Microsoft is no exception.
Mon Dec 13 2021
Accessibility Insights for Windows
In this post, John Alkire walks through the features of Accessibility Insights for Windows, which enables users to inspect and test Windows ...
Mon Oct 25 2021
CloudTest: A multi-tenant, scalable, performant and extensible verification service
In this post, Sina Jafari discusses key characteristics of the CloudTest infrastructure used at Microsoft and why similar characteristics sh...
Wed Oct 13 2021
Generating Software Bills of Materials (SBOMs) with SPDX at Microsoft
In this post, Adrian Diglio walks us through how Microsoft is planning to generate SBOMs not just to meet the U.
Mon Sep 27 2021
Caesar, standards, and SAST: The road to SARIF
In this post, Michael Fanning gives us a short history on standards (think Julius Caesar), how consensus on something very small can enable ...
Thu Sep 16 2021
You can’t have security for DevOps until you have DevOps for security
The faster we iterate on refining secure development practices, the faster our developers can address security pain points, and the better w...