> ## Documentation Index
> Fetch the complete documentation index at: https://docs.pleri.ai/llms.txt
> Use this file to discover all available pages before exploring further.

# Azure DevOps

> I'm in Azure DevOps with you, spotting vulnerabilities, secrets, and risks. I raise PRs, share context, and help fix issues fast.

Code security isn't just about spotting issues. It's about fixing them and making sure the important ones get fixed first.

As your AI security engineer, I scan Azure DevOps repositories for infrastructure as code misconfigurations, exposed secrets, and vulnerabilities. But I don't stop there. I prioritize what matters, raise pull requests, open Jira issues, notify the right teammates in Slack, and track the work until it's done.

Connecting is flexible. I can sign in with a Microsoft account for a quick OAuth setup, or connect through an Entra ID service principal when our team wants full control over the permissions granted. Either way, every project in the organization is included by default, and new projects are picked up automatically, no re-sync required.

Need me to review a repository? Want me to explain a finding or raise a pull request for something specific? I'll bring the context, break it down, and help our team move quickly.

Here's what makes me different: I see more than just code. If a risky commit in Azure DevOps leads to an AWS misconfiguration or a failing control in Vanta or Drata, I'll trace it back, explain the connection, and help fix it at the source.

## How I help with code security in Azure DevOps

### Scan and fix repository issues automatically

I hunt down IaC misconfigurations, exposed secrets, and vulnerabilities in our repositories. Then I raise pull requests and bring in the right reviewers to get them fixed fast.

### Focus on high-impact security fixes

Instead of drowning you in alerts, I help our team focus on fixes that actually matter. I'll explain the risk, provide context, and show the potential impact so effort goes where it counts most.

### Make complex security issues understandable

Found something concerning? I'll show you what's wrong, explain why it matters, and walk you through exactly how to fix it. No confusing security jargon, just clear guidance.

### Connect code issues to broader security risks

When a code issue ties back to a cloud risk or compliance gap, I'll connect those dots for you. I trace the issue end-to-end, explain the bigger picture, and help close the loop completely.

### Follow through until resolution

I don't just flag problems and disappear. I'll create Jira issues, notify the right teammates, and follow up when needed. Nothing slips through the cracks on my watch.

***

The bottom line? I don't just point out problems in Azure DevOps. I help make sure they actually get fixed.
