{"id":3852,"date":"2026-04-15T15:06:53","date_gmt":"2026-04-15T15:06:53","guid":{"rendered":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/2026\/04\/15\/one-click-security-scanning-and-org-wide-alert-triage-come-to-advanced-security\/"},"modified":"2026-04-15T15:06:53","modified_gmt":"2026-04-15T15:06:53","slug":"one-click-security-scanning-and-org-wide-alert-triage-come-to-advanced-security","status":"publish","type":"post","link":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/2026\/04\/15\/one-click-security-scanning-and-org-wide-alert-triage-come-to-advanced-security\/","title":{"rendered":"One-click security scanning and org-wide alert triage come to Advanced Security"},"content":{"rendered":"<p>We\u2019re shipping two major capabilities that change how security teams enable and act on application security in Azure DevOps: <strong>CodeQL default setup<\/strong> makes it possible to enable code scanning across your organization without configuring a single pipeline, and a <strong>new combined alerts experience in Security Overview<\/strong> gives security administrators a single place to search, filter, and coordinate remediation across every repository.<\/p>\n<p>In tandem with dependency scanning default setup and automatic secret scanning, scanning is now the default, and delegating work is built-in to the product with security campaigns powered by the combined alerts experience.<\/p>\n<h2>CodeQL default setup (public preview)<\/h2>\n<p>Until now, enabling CodeQL code scanning on Azure DevOps required manually configuring a pipeline for each repository, installing the CodeQL task, setting up the build steps, and maintaining the pipeline over time. For organizations with hundreds of repositories, this could be a significant barrier to adoption.<\/p>\n<p>CodeQL default setup eliminates that friction. With one click, you can enable code scanning for a repository, or across your entire project or organization. Advanced Security automatically runs CodeQL scans using Azure Pipelines by default on your behalf, with no additional configuration required.<\/p>\n<p><a href=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2026\/04\/advanced-security-codeql-default-setup-enablement-repo-unbundled.webp\"><img data-opt-id=1029463260  fetchpriority=\"high\" decoding=\"async\" src=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2026\/04\/advanced-security-codeql-default-setup-enablement-repo-unbundled.webp\" alt=\"advanced security codeql default setup enablement repo unbundled image\" width=\"979\" height=\"566\" class=\"aligncenter size-full wp-image-72664\" \/><\/a><\/p>\n<h3>Key capabilities<\/h3>\n<ul>\n<li><strong>One-click enablement<\/strong> at the repository, project, or organization level<\/li>\n<li><strong>Automatic scanning<\/strong> \u2014 no YAML editing, no task installation<\/li>\n<li><strong>Runs on Azure Pipelines<\/strong> for a seamless out-of-the-box experience <\/li>\n<li><strong>Configurable agent pool<\/strong> via organization-level repository settings, so you control where scans run<\/li>\n<\/ul>\n<h3>Getting started<\/h3>\n<ol>\n<li>Navigate to your repository, project, or organization settings<\/li>\n<li>Enable the Code Security plan for your repository<\/li>\n<li>Enable CodeQL default setup<\/li>\n<li>Scans run on specified schedule, which can be changed at the organization level <\/li>\n<\/ol>\n<p>For more information on default setup, see <a href=\"https:\/\/aka.ms\/ghazdo\/codeql-default-setup\" target=\"_blank\">https:\/\/aka.ms\/ghazdo\/codeql-default-setup<\/a>.<\/p>\n<hr \/>\n<h2>Combined alerts view and security campaigns<\/h2>\n<p>Security administrators have told us consistently: \u201cI need to see what\u2019s happening across my entire organization, not repo by repo.\u201d The new <strong>combined alerts experience in Security Overview<\/strong> delivers exactly that.<\/p>\n<h3>See everything in one place<\/h3>\n<p>The Security Overview alerts tab surfaces individual alerts from the default branch of <strong>all repositories<\/strong> in your organization in a single, unified view. Instead of clicking into each repository to understand your security posture, you can now search, sort, and filter across your entire estate from one screen.<\/p>\n<p><a href=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2026\/04\/security-overview-alerts-page.gif\"><img data-opt-id=816225574  fetchpriority=\"high\" decoding=\"async\" src=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2026\/04\/security-overview-alerts-page.gif\" alt=\"Filter with different criteria in the alerts view\" width=\"1185\" height=\"704\" class=\"aligncenter size-full wp-image-72621\" \/><\/a><\/p>\n<h3>Security campaigns: coordinate remediation at scale<\/h3>\n<p><strong>Security campaigns<\/strong> let you create filtered views of alerts and share them with your team. Focus on a specific vulnerability type, severity level, or set of repositories, then share the campaign as a coordination tool for remediation. Filters are live, so if any new vulnerabilities appear that match your criteria, you\u2019ll see them appear in your campaigns.<\/p>\n<p>Use campaigns to:<\/p>\n<ul>\n<li>Track remediation of a specific CVE across all affected repositories<\/li>\n<li>Create a \u201ccritical secrets\u201d campaign for your security team\u2019s weekly triage<\/li>\n<li>Share a filtered view with a development team so they see only what\u2019s relevant to them<\/li>\n<\/ul>\n<p><a href=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2026\/04\/security-overview-alerts-campaigns.gif\"><img data-opt-id=2116643831  data-opt-src=\"https:\/\/devblogs.microsoft.com\/devops\/wp-content\/uploads\/sites\/6\/2026\/04\/security-overview-alerts-campaigns.gif\"  decoding=\"async\" src=\"data:image/svg+xml,%3Csvg%20viewBox%3D%220%200%20100%%20100%%22%20width%3D%22100%%22%20height%3D%22100%%22%20xmlns%3D%22http%3A%2F%2Fwww.w3.org%2F2000%2Fsvg%22%3E%3Crect%20width%3D%22100%%22%20height%3D%22100%%22%20fill%3D%22transparent%22%2F%3E%3C%2Fsvg%3E\" alt=\"security overview alerts campaigns image\" width=\"1117\" height=\"769\" class=\"optimole-lazy-only  aligncenter size-full wp-image-72620\" \/><\/a><\/p>\n<hr \/>\n<h2>What\u2019s next<\/h2>\n<p>We\u2019re continuing to invest in making Advanced Security the most seamless way to secure your Azure DevOps workflows. Both CodeQL default setup and the combined alerts dashboard will roll out to organizations over the next two to three weeks.<\/p>\n<p>If you\u2019re interested in trying CodeQL default setup, enable it from your repository or organization settings and start scanning.<\/p>\n<p>For the combined alerts dashboard, navigate to your <strong>Organization Settings<\/strong> &gt; Security overview to view.<\/p>\n<hr \/>\n<p><em>Have feedback? We\u2019d love to hear from you. Reach out via the Azure DevOps Developer Community or contact your Microsoft account team.<\/em><\/p>\n<p>The post <a href=\"https:\/\/devblogs.microsoft.com\/devops\/one-click-security-scanning-and-org-wide-alert-triage-come-to-advanced-security\/\">One-click security scanning and org-wide alert triage come to Advanced Security<\/a> appeared first on <a href=\"https:\/\/devblogs.microsoft.com\/devops\">Azure DevOps Blog<\/a>.<\/p>","protected":false},"excerpt":{"rendered":"<p>We\u2019re shipping two major capabilities that change how security teams enable and act on application security in Azure DevOps: CodeQL [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":3853,"comment_status":"","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"var(--ast-global-color-4)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[3],"tags":[],"class_list":["post-3852","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-azure"],"_links":{"self":[{"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/posts\/3852","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/comments?post=3852"}],"version-history":[{"count":0,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/posts\/3852\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/media\/3853"}],"wp:attachment":[{"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/media?parent=3852"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/categories?post=3852"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/rssfeedtelegrambot.bnaya.co.il\/index.php\/wp-json\/wp\/v2\/tags?post=3852"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}