Microsoft Products (15)
All Microsoft Release Notes (454)
- Apr 20, 2026
- Date parsed from source:Apr 20, 2026
- First seen by Releasebot:Apr 21, 2026
Translytical Task Flows (Generally Available)
Power BI introduces translytical task flows to let users update records, add annotations, and trigger external actions in reports.
Translytical task flows take interactive Power BI reports to the next level where users can update records, add annotations, and trigger actions in external systems—all without leaving the report. With translytical task flows, report consumers become active participants. Instead of viewing data and then switching to another application to take action, users can complete their … Continue reading “Translytical Task Flows (Generally Available)”
Original source - Apr 17, 2026
- Date parsed from source:Apr 17, 2026
- First seen by Releasebot:Apr 19, 2026
All of your release notes in one feed
Join Releasebot and get updates from Microsoft and hundreds of other software products.
- Apr 17, 2026
- Date parsed from source:Apr 17, 2026
- First seen by Releasebot:Apr 18, 2026
dotnet-0.0.1
Agent Framework ships a Foundry preview release with expanded hosting support, OpenTelemetry auto-instrumentation for hosted agents, and new invocations, responses, LocalTools, Workflow, and MCP samples. It also improves session handling, handoff orchestration, and error reporting.
Changes
- ecc34ff Net: Publish all packages as 0.0.1-preview.260417.2 (#5341) [ #5336 ]
- 31acacc Net: Prepare Foundry Preview Release (#5336)
- e737ac6 .NET: Auto-instrument resolved AIAgents with OpenTelemetry for Foundry Hosted Agents (#5316)
- 8f5a6ec Fix AgentFrameworkResponseHandlerTests: implement session methods in test mock agents
- 518e90e Add Dockerfiles, README, agent yamls and bearer token support to Hosted-Workflow-Handoff
- 7c9ed7f Remove FoundryResponsesRepl and empty FoundryResponsesHosting directory
- 77529dc Rename Hosted-Workflows to Hosted-Workflow-Simple, Hosted-WorkflowHandoff to Hosted-Workflow-Handoff
- e6dfdd4 Move FoundryResponsesHosting to responses/Hosted-WorkflowHandoff, use GetResponsesClient
- 10077bd Use placeholder for AGENT_NAME in Hosted-FoundryAgent .env.example
- 98d3a81 Remove launchSettings, use .env for port configuration
- See More
- d49d546 Restructure FoundryHostedAgents samples into invocations/ and responses/ [ #5281 ]
- 030ef3a Merge branch 'feature/responses-hosting' of https://github.com/microsoft/agent-framework into hosted-agent-adapter
- 53fec2a Add Invocations protocol samples (hosted echo agent + client) (#5278)
- 93306f5 Register AgentSessionStore in test DI setups
- bc303d8 Fix dotnet format: add Async suffix to test methods (IDE1006), fix encoding and style
- 8d30cad Fix CHARSET: add UTF-8 BOM to Hosted-LocalTools and Hosted-Workflows
- c1ea834 Fix IDE0009: add 'this' qualification in all HostedAgentsV2 samples
- e751779 Fix IDE0009: add 'this' qualification in DevTemporaryTokenCredential
- 5af3d47 Fixing small issues.
- 4739d1e Bump Azure.AI.AgentServer packages to 1.0.0-beta.1/beta.21 and fix breaking API changes
- 930d477 Add Hosted-McpTools sample with dual MCP pattern
- 8b49a0a Removing extra using samples
- e70f206 Adding LocalTools + Workflow samples
- 0949260 Version bump
- 28f3d17 Address text rag sample working
- ebb3483 Foundry Agent Hosting
- 9e820aa Update chat client agent for contributor and devs
- a451904 Using updates
- ac6a0e3 Adding SessionStorage and SessionManagement, improving samples to align Consumption vs Hosting
- 990330e ChatClientAgent working
- 3ef5436 Hosting Samples update
- 3984ef4 Hosting Samples update
- bf779f2 Hosting Samples update
- d0fc749 Hosting Samples update
- 3a26179 Add UserAgent middleware tests for Foundry hosting
- cf4a3f6 Bump hosted internal package version
- 34eeea1 Address breaking changes in 260408
- 6e834fc Renaming and merging hosting extensions. (#5091)
- a25502b Catch agent errors and emit response.failed with real error message
- afce566 Fix model override bug and add client REPL sample
- eccdcff Fix CA1873: guard LogWarning with IsEnabled check
- 226abeb Bump OpenTelemetry packages to fix NU1109 downgrade errors
- 4a2e255 Bump package version to 0.9.0-hosted.260402.2
- 838fd7f Move Foundry Responses hosting into Microsoft.Agents.AI.Foundry package
- 4dd3a30 Add hosted package version suffix (0.9.0-hosted) to distinguish from mainline
- 5368e53 Update Azure.AI.AgentServer packages to 1.0.0-alpha.20260401.5
- 15e36ef Clean up tests and sample formatting
- e5c1203 Bump System.ClientModel to 1.10.0 for Azure.Core 1.52.0 compat
- 12251b1 Add Azure AI Foundry Responses hosting adapter
- 548dfb1 .NET: Bump Azure.AI.AgentServer packages to 1.0.0-beta.1/beta.21 and fix br… (#5287)
- ff05c22 Python: add experimental file history provider (#5248)
- eab7f09 Forward provider config to SessionConfig in GitHubCopilotAgent (fixes #5190) (#5195)
- 68b9364 Python: Bump agent-framework-devui to 1.0.0b260414 for release (#5259)
- 2b251d9 Python: Fix reasoning replay when store=False (#5250)
- 5b16684 Add Hosted-McpTools sample with dual MCP pattern
- 485af07 Python: Add GeminiChatClient (#4847)
- 64c68ca Python: Skip get_final_response in OTel _finalize_stream when stream errored (#5232) [ #5231 ]
- 98e1776 Python: Fix DevUI streaming memory growth and add cross-platform regression coverage (#5221)
- 7bb0fec Python: Move InMemory history provider injection to the first invocation (#5236)
- f183f88 Python: AG-UI deterministic state updates from tool results (#5201)
- 3c31ac2 Python: Fix HandoffBuilder dropping function-level middleware when cloning agents (#5220) [ #5173 ]
- 1b95e85 Python: Add allowed_checkpoint_types support to CosmosCheckpointStorage for parity with FileCheckpointStorage (#5202) [ #5200, #3 ]
- b89adb2 Python: skill name validation improvements (#4530)
- 9133974 Bump pygments from 2.19.2 to 2.20.0 in /python (#4978)
- 952e685 Python: Fix python-feature-lifecycle skill YAML frontmatter (#5226)
- 1584879 Removing extra using samples
- b1fb63e .NET: Update AGUI service to support session storage (#5193)
- 4b9d848 Adding LocalTools + Workflow samples
- d02cee5 Version bump
- ad62560 Address text rag sample working
- 76fe731 .NET: feat: Refactor Handoff Orchestration and add HITL support (#5174)
- 340ec82 Foundry Agent Hosting
- 9e842e1 Update chat client agent for contributor and devs
- 39b560f Add missing path to verify-samples run checkout (#5194)
- 4895ad7 Using updates
- fcc9682 Adding SessionStorage and SessionManagement, improving samples to align Consumption vs Hosting
- a82c1ed ChatClientAgent working
- eb7f861 Hosting Samples update
- 026f71a Hosting Samples update
- 4ab4373 Hosting Samples update
- 7407c0a Hosting Samples update
- fed3c06 Add UserAgent middleware tests for Foundry hosting
- 176b8f9 Bump hosted internal package version
- 53dd990 Address breaking changes in 260408
- 23db956 Renaming and merging hosting extensions. (#5091)
- eb67379 Catch agent errors and emit response.failed with real error message
- 21dc531 Fix model override bug and add client REPL sample
- 3b03c6d Fix CA1873: guard LogWarning with IsEnabled check
- 5ba8521 Bump OpenTelemetry packages to fix NU1109 downgrade errors
- af9807b Bump package version to 0.9.0-hosted.260402.2
- a1c19b9 Move Foundry Responses hosting into Microsoft.Agents.AI.Foundry package
- bb7082d Add hosted package version suffix (0.9.0-hosted) to distinguish from mainline
- 59ad429 Update Azure.AI.AgentServer packages to 1.0.0-alpha.20260401.5
- 52cc4a9 Clean up tests and sample formatting
- 69597d7 Bump System.ClientModel to 1.10.0 for Azure.Core 1.52.0 compat
- 0b1ed03 Add Azure AI Foundry Responses hosting adapter
This list of changes was auto generated.
Original source - Apr 16, 2026
- Date parsed from source:Apr 16, 2026
- First seen by Releasebot:Apr 17, 2026
KB5081495 - Cumulative Update 4 for SQL Server 2025
SQL Server 2025 ships Cumulative Update 4 with 11 fixes, improving Database Mail, upgrade permissions, Linux stability, Full-Text Search, JSON, high availability, replication, and more while also noting a SESSION_CONTEXT known issue in parallel plans.
This article describes Cumulative Update (CU4) for Microsoft SQL Server 2025. This update package contains 11 fixes that were issued after the release of SQL Server 2025 Cumulative Update 3. It updates components in the following builds:
- SQL Server - Product version: 17.0.4035.5, file version: 2025.170.4035.5
- Analysis Services - Product version: 17.0.25.223, file version: 2025.170.25.223
Known issues in this update
Incorrect behavior of SESSION_CONTEXT in parallel plans
Queries that use the built-in SESSION_CONTEXT function might return incorrect results or trigger access violation (AV) dump files when run in parallel query plans. This issue occurs because of the manner in which SESSION_CONTEXT interacts with parallel execution threads, particularly if the session is reset for reuse.
For more information, see the Known issues section in SESSION_CONTEXT.
Improvements and fixes included in this update
A downloadable Microsoft Excel workbook that contains a summary list of builds, together with their current support lifecycle, is available. The Excel file also contains detailed fix lists for SQL Server 2025, SQL Server 2022, SQL Server 2019, and SQL Server 2017.
Note
Individual entries in the following table can be referenced directly through a bookmark. If you select any bug reference ID in the table, a bookmark tag is added to the URL by using the "#NNNNNNN" format. You can then share this URL with others so that they can jump directly to the desired fix in the table.
For more information about the bugs that are fixed and enhancements that are included in this cumulative update, see the following table.
4954486 Fixes an issue in contained availability groups that causes DatabaseMail to sends email messages without attachments when using sp_RunMailQuery. SQL Server Client Tools / Database Mail / All
5000227 Fixes an issue in which permissions on stored procedures and other objects in msdb are lost during the SQL Server upgrade process. This issue causes unexpected permission removal for users. SQL Server Engine / Management Services / Windows
5001765 Fixes an issue in which the server could enter an unintended wait state on an internal thread that does not support suspension. This issue potentially causes the program to stop responding. The lock is now acquired by using a spin-wait on such threads instead of blocking. SQL Server on Linux / SQLPAL / Linux
5003709 Fixes an issue in which DTSWizard.exe doesn't open if SQL Server is installed without the SQL Server Integration Services (SSIS) features. Integration Services / Integration Services / Windows
5008479 Fixes an issue in which indexing certain Microsoft Word 6.0 documents by including Full-Text Search causes the filter daemon host process (fdhost.exe) to stop responding. SQL Server Engine / Search / All
5019346 Fixes a memory corruption issue in the audit functionality for contained availability groups. SQL Server Engine / High Availability and Disaster Recovery / All
5028791 Fixes an access violation error that occurs when you query sys.dm_xe_session_targets for instances that run on Windows Server 2025. SQL Server Engine / SQL OS / Windows
5029490 Limits the comparison mode for Json_contains to a value of either 0 (exact match) or 1 (pattern match). The default value is 0. SQL Server Engine / JSON / All
5033606 For contained availability groups (CAG), restricts adding databases to only the currently connected CAG. For DBCreator, restricts adding databases to only the current CAG, and requires the database owner to match the logged-in user. SQL Server Engine / High Availability and Disaster Recovery / All
5063278 Fixes non-yielding scheduler errors and dump files that might occur during a high amount of lazy writer I/O. SQL Server Engine / Replication / All
5071334 Fixes an issue in which inflectional Full-Text Search queries fail for version 2 languages that do not implement an IStemmer. This issue generates error messages that include predicates such as FREETEXT, FREETEXTTABLE, and FORMSOF(INFLECTIONAL, ...). SQL Server Engine / Search / All
Original source - Apr 15, 2026
- Date parsed from source:Apr 15, 2026
- First seen by Releasebot:Apr 16, 2026
python-devui-1.0.0b260414
Agent Framework fixes streaming memory growth in DevUI frontend.
[devui-1.0.0b260414] - 2026-04-14
Fixed
- agent-framework-devui: Fix streaming memory growth in DevUI frontend (#5221)
- Apr 15, 2026
- Date parsed from source:Apr 15, 2026
- First seen by Releasebot:Apr 16, 2026
- Modified by Releasebot:Apr 16, 2026
Visual Studio Code by Microsoft
Visual Studio Code 1.116
Visual Studio Code releases 1.116 with stronger chat and agent workflows, including agent debug logs, Copilot CLI thinking effort controls, terminal agent tools, and built-in GitHub Copilot. It also adds accessibility, browser, and performance improvements.
Welcome to the 1.116 release of Visual Studio Code
This release continues to make working with chat and agents more powerful and efficient. Here are some highlights of what's new:
- Agent Debug Logs: view logs from previous agent sessions to understand and debug agent interactions.
- Copilot CLI thinking effort: configure model thinking effort in Copilot CLI to balance response quality and latency.
- Terminal agent tools: interact with any terminal session from your agent sessions.
- GitHub Copilot built-in: start using AI without having to install the GitHub Copilot Chat extension.
Happy Coding!
Agent experience
Debug previous agent sessions
Setting: github.copilot.chat.agentDebugLog.fileLogging.enabled
The Agent Debug Log panel shows a chronological event log of agent interactions during a chat session, which is useful for understanding what happens when you send a prompt and to debug chat customizations.
You can now view the log for the current session as well as previous sessions, with logs persisted locally on disk. This enables you to review and debug past agent interactions even after the session has ended.
The setting to enable the Agent Debug Logs panel is now merged into the troubleshooting setting github.copilot.chat.agentDebugLog.fileLogging.enabled.
Learn more about the Agent Debug Logs panel in the documentation.
Configure thinking effort in Copilot CLI
Similar to local agent sessions, you can now configure the thinking effort for reasoning models in Copilot CLI sessions with the language model picker. Thinking effort controls how much reasoning the model applies to each request, which can help balance response quality and latency based on your needs.
Choose a reasoning model in the picker and select the arrow to reveal the available effort levels. The available effort levels might vary by model. Non-reasoning models do not show the submenu.
Learn more about thinking effort and reasoning in the documentation.
Customizations welcome page
The Chat Customizations dialog, available via the Chat: Open Customizations command or the gear icon in the Chat view, now has a welcome page that gives you an overview of all your agent customizations.
Creating customizations might be daunting at first, so you can now use the Customize Your Agent input on the welcome page to let VS Code draft customizations like agents, skills, and instructions based on a natural language description.
Learn more about customizing agents in the agent customization documentation.
Tool confirmation carousel (Experimental)
Setting: chat.tools.confirmationCarousel.enabled
To make approving or rejecting multiple tool calls more efficient, chat now shows a carousel control for tool confirmations. The carousel gives you a compact and navigable way to review and approve multiple tool calls in sequence without scrolling through the conversation.
This feature is experimental and controlled by the chat.tools.confirmationCarousel.enabled setting. It is enabled by default in VS Code Insiders and is gradually rolling out to Stable as we collect feedback.
Visual Studio Code Agents (Insiders)
Note: The Visual Studio Code Agents app is currently in preview and only available when installing VS Code Insiders.
In the last release, we shared the Visual Studio Code Agents app, a new preview companion app that ships alongside VS Code Insiders and is built for agent-native development.
Since introducing the app in 1.115, we've continued to iterate with features and fixes based on feedback, to deliver a great agent-first experience.
Some of the latest updates include:
- Reasoning level selection: as mentioned above, you can now configure thinking effort for reasoning models in Copilot CLI sessions.
- Plan mode handling: for CLI sessions involving planning, plan mode will automatically kick in.
- Files tab shown by default in Changes: the Files tab now shows by default in the Changes panel.
- Session response, theming, and rendering improvements: a range of refinements to response handling, visual consistency, and rendering performance.
- App name: We've renamed the app to Visual Studio Code Agents - Insiders.
We've added a new entry point to Try out the new Agents app from the VS Code welcome page:
You can also still open the app via the same methods as in 1.115:
- Launch Visual Studio Code Agents - Insiders from your Start menu or Applications folder in the OS.
- Run Chat: Open Agents Application from the Command Palette.
Terminal tools
Foreground terminal support for agent tools
The send_to_terminal and get_terminal_output agent tools now also work with foreground terminals and not just background terminals that were created by the agent. This means that the agent can read output from and send input to any terminal visible in the terminal panel, such as a running REPL or an interactive script.
Terminal input improvements
This release includes several improvements to the experience for terminal input in agent sessions:
- Detect terminal input: The LLM-based prompt-for-input detection is removed. Previously, every terminal output chunk triggered an extra LLM call to classify whether the terminal was waiting for input, which added latency and used extra tokens. The agent now handles terminal input directly via send_to_terminal and uses the question carousel to defer to you when needed.
- Progress messages: When the agent sends answers to the terminal, the progress message now shows which question is being answered, for example: Sending "my-project" to terminal (replying to: What is your project name?).
- Focus Terminal: When the agent needs terminal input, like when prompting for a password or an interactive installer like npm init, the question carousel now includes a Focus Terminal button. Select it to focus the relevant terminal and type your response directly. If you start typing in the terminal while the carousel is open, it automatically dismisses and informs the agent that you are handling the input directly.
Background terminal notifications enabled by default
Setting: chat.tools.terminal.backgroundNotifications
Background terminal notifications are now enabled by default. When the agent runs a command in a background terminal, it automatically receives notifications when the command completes, times out, or requires input. This enables the agent to respond more quickly and accurately without needing to poll for terminal output.
Chat UX
This release includes a few UX improvements to chat:
- Diffs in the top level: Code diffs now render directly in the chat conversation, so you can review proposed changes without switching context to a separate diff view.
- Rendering performance: Chat responses should now render faster, with added improvements including reduced layout thrashing and more efficient incremental updates during streaming. Also fixes an issue where rapid bursts of tool invocation updates cause brief hangs in the extension host.
- Chat send performance: Fixes an issue where chat message sending is blocked by loading chat customizations. The message now visually appears in the chat conversation immediately even if prompts are still loading.
- Subagent progress: The expanded view for subagent progress is now more visually distinct, making it easier to follow when a subagent is in progress.
Accessibility
Agents app accessibility
The Agents app, available in VS Code Insiders, now includes comprehensive accessibility support for keyboard and screen reader users.
Accessibility help dialog: Press Alt+F1 (Option+F1 on macOS) while the chat input is focused to open the accessibility help dialog. It provides an overview of what the Agents app is, lists available views, and shows keybindings for navigating between them.
Keyboard navigation commands: New keybindings let you quickly focus key views in the Agents app:
- Focus Changes View (unassigned)
- Focus Chat Customizations View (unassigned)
- Focus Files Explorer View (unassigned)
These keybindings are scoped to the Agents window and do not override their standard VS Code counterparts.
Verbosity setting: The accessibility.verbosity.sessionsChat setting controls whether the chat input announces an ARIA hint about opening accessibility help. Disable it to suppress the announcement.
ARIA labels and landmarks: The auxiliary bar is now marked as a complementary landmark with a descriptive label, workspace picker buttons have meaningful ARIA labels, and session list items include creation time context.
Screen reader instructions for keyboard shortcuts search results
When searching in the Keyboard Shortcuts editor, the screen reader now announces instructions for navigating to the search results. NVDA and other screen readers announce "Use Ctrl+Down Arrow to access the searched shortcut details", so you can quickly navigate to the results table. You can disable this announcement with the accessibility.verbosity.keyboardShortcuts setting.
Integrated browser
The integrated browser is now easier to access thanks to two new entry points:
- The View menu, under View > Browser
- The keyboard shortcut Ctrl+Alt+/
These actions open the integrated browser if no tabs are open, or let you quickly see and jump to existing tabs.
These new entry points are in addition to the previously existing ones:
- The Browser: Open Integrated Browser command
- Link clicks to localhost sites (workbench.browser.openLocalhostLinks)
- The title bar icon (workbench.browser.showInTitleBar)
- Ask an agent to open or interact with the browser (workbench.browser.enableChatTools This setting is managed at the organization level. Contact your administrator to change it.)
Languages
JS/TS Chat Features extension (Preview)
Setting: jsts-chat-features.skills.enabled
The new builtin JS/TS Chat Features extension enhances Copilot's skills to work with TypeScript and JavaScript. For this first release, the extension contributes skills for setting up modern TypeScript projects. We plan to enhance and expand its functionality in a future release.
To try these skills today, enable the jsts-chat-features.skills.enabled setting.
Engineering
GitHub Copilot is now built-in
GitHub Copilot Chat is now a built-in extension in VS Code. New users no longer need to install any extension to start using Copilot features such as chat, inline suggestions, and agents. Copilot is available out of the box as part of the standard VS Code installation.
This change is part of our ongoing effort to make VS Code the open source AI code editor. By shipping Copilot as a built-in extension, we reduce friction for new users and ensure that AI-powered features are seamlessly integrated from the first launch.
Existing users are not affected by this change. If you already have the Copilot extension installed, it continues to work as before.
As before, if you prefer not to use AI features, you can disable them with the chat.disableAIFeatures setting.
Enterprise
Group policy to filter agent network access
Administrators can now use group policies to control which network domains agent tools can access. When the chat.agent.networkFilter setting is enabled via policy, network access from agent tools such as the fetch tool and the integrated browser is restricted according to the allowed and denied domain lists.
- chat.agent.allowedNetworkDomains specifies which domains agent tools can access. Supports wildcards such as *.example.com.
- chat.agent.deniedNetworkDomains specifies which domains are blocked. Denied domains take precedence over allowed domains.
When the network filter is enabled and both lists are empty, all domains are blocked. When chat.agent.sandbox.enabled is also enabled, the network domain rules additionally apply to the terminal sandbox.
These policies are configured with keys ChatAgentNetworkFilter, ChatAgentAllowedNetworkDomains, and ChatAgentDeniedNetworkDomains. Learn more about enterprise policies in the documentation.
Contributions to extensions
GitHub Pull Requests
There has been more progress on the GitHub Pull Requests extension, which enables you to work on, create, and manage pull requests and issues. New features include:
- Add a chat tool for creating pull requests.
- Worktrees can also be deleted from the "Delete Local Branches and Remotes" command.
Review the changelog for the 0.136.0 release of the extension to learn about everything in the release.
Deprecated features and settings
New deprecations in this release
None
Upcoming deprecations
- Edit Mode is officially deprecated as of VS Code version 1.110. Users can temporarily re-enable Edit Mode via VS Code setting chat.editMode.hidden This setting is managed at the organization level. Contact your administrator to change it. . This setting will remain supported through version 1.125. Beginning with version 1.125, Edit Mode will be fully removed and can no longer be enabled via settings.
Thank you
Contributions to our issue tracking:
- @gjsjohnmurray (John Murray)
- @RedCMD (RedCMD)
- @IllusionMH (Andrii Dieiev)
- @albertosantini (Alberto Santini)
Contributions to vscode:
- @AndreasArvidsson (Andreas Arvidsson): Fix TextmateSnippet clone method to correctly assign _children PR #295555
- @gryan11 (Gabriel Ryan): Fix: add missing override modifiers in test mock class PR #308558
- @maruthang (Maruthan G)
- fix: preserve code block toolbar visibility during chat streaming PR #307978
- fix: strip ANSI escape codes from inline test output messages PR #308161
- fix: resolve default view for markdown files on first startup PR #308739
- @romalpani (Rohan Malpani): feat: enhance sessions view with find widget and header actions PR #307679
- @winstliu (Winston Liu): Fix --prof-startup never being able to profile renderer/extension host PR #307849
- @yogeshwaran-c (Yogeshwaran C)
- Add scrollbar indicators for failing tests PR #307996
- fix: check message location visibility for failureInVisibleDocument peek PR #308697
- Show breakpoint widget on Alt+click in gutter PR #308687
- fix: exclude source annotations from text selection in debug console PR #308925
- @zackbach (Zack Eisbach): Add support for regex in tokenTypes PR #304885
We really appreciate people trying our new features as soon as they are ready, so check back here often and learn what's new.
If you'd like to read release notes for previous VS Code versions, go to Updates on code.visualstudio.com.
Original source - Apr 14, 2026
- Date parsed from source:Apr 14, 2026
- First seen by Releasebot:Apr 15, 2026
KB5084814 - Description of the security update for SQL Server 2025 GDR: April 14, 2026
SQL Server 2025 ships a security update that fixes vulnerabilities and addresses elevation of privilege issues in linked servers and SQL commands, helping improve protection for SQL Server users.
Summary
This security update contains fixes and resolves vulnerabilities. To learn more about the vulnerabilities, see the following security advisories:
CVE-2026-32167 - SQL Server Elevation of Privilege Vulnerability
CVE-2026-32176 - SQL Server Elevation of Privilege Vulnerability
The Microsoft SQL Server components are updated to the following builds in this security update:
SQL Server - product version: 17.0.1110.1, file version: 2025.170.1110.1
Improvements and fixes included in this update
A downloadable Microsoft Excel workbook that contains a summary list of builds, together with their current support lifecycle, is available. The Excel file also contains detailed fix lists.
Note:
Individual entries in the following table can be referenced directly through a bookmark. If you select any bug reference ID in the table, a bookmark tag is added to the URL by using the "#bkmk_NNNNNNN" format. You can then share this URL with others so that they can jump directly to the desired fix in the table.
Bug reference
Description
Fix area
Component
Platform
5029979
This fix addresses an elevation of privilege vulnerability in SQL Server linked servers that allows a low-privileged SQL Server user to gain sysadmin permission.
SQL Server Engine
PolyBase
Linux, Windows
4999182
This fix resolves an issue in SQL Server in which improper neutralization of special elements in SQL commands (SQL injection) allows an authorized attacker to elevate privileges over a network.
SQL Server Engine
SQL Agent
Windows
How to obtain and install the update
Method 1: Windows Update
Method 2: Microsoft Update Catalog
Method 3: Microsoft Download Center
More information
Prerequisites
Security update deployment information
File hash information
File information
The English version of this package has the file attributes (or later file attributes) that are listed in the following worksheet. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.
For all supported x64-based versions -
Download the list of files that are included in security update 5084814.
Information about protection and security
Protect yourself online:
Windows Security support
Learn how we guard against cyber threats:
Microsoft Security
Original source - Apr 14, 2026
- Date parsed from source:Apr 14, 2026
- First seen by Releasebot:Apr 15, 2026
KB5083245- Description of the security update for SQL Server 2025 CU3: April 14, 2026
SQL Server 2025 ships a security update that fixes vulnerabilities and improves protection against elevation of privilege issues. It updates the SQL Server build and addresses linked server permission escalation plus a SQL injection-related privilege escalation issue.
Summary
This security update contains fixes and resolves vulnerabilities. To learn more about the vulnerabilities, see the following security advisories:
- CVE-2026-32167 - SQL Server Elevation of Privilege Vulnerability
- CVE-2026-32176 - SQL Server Elevation of Privilege Vulnerability
The Microsoft SQL Server components are updated to the following builds in this security update:
- SQL Server - product version: 17.0.4030.1, file version: 2025.170.4030.1
Improvements and fixes included in this update
A downloadable Excel workbook that contains a summary list of builds, together with their current support lifecycle, is available. The Excel file also contains detailed fix lists.
Note:
Individual entries in the following table can be referenced directly through a bookmark. If you select any bug reference ID in the table, a bookmark tag is added to the URL by using the "#bkmk_NNNNNNN" format. You can then share this URL with others so that they can jump directly to the desired fix in the table.
Bug reference Description Fix area Component Platform
- 5063803 This fix addresses an elevation of privilege vulnerability in SQL Server linked servers that allows a low-privileged SQL Server user to gain sysadmin permissions. SQL Server Engine PolyBase Linux, Windows
- 5052472 This fix resolves an issue in SQL Server in which improper neutralization of special elements in SQL commands (SQL injection) allows an authorized attacker to elevate privileges over a network. SQL Server Engine SQL Agent Windows
How to obtain and install the update
Method 1: Windows Update
Method 2: Microsoft Update Catalog
Method 3: Microsoft Download Center
How to obtain or download the latest cumulative update package for Linux
To update SQL Server 2025 on Linux to the latest CU, you must first have the Cumulative Update repository configured. Then, update your SQL Server packages by using the appropriate platform-specific update command.
For installation instructions and direct links to the CU package downloads, see the SQL Server 2025 Release Notes.
More information
Prerequisites
Security update deployment information
File hash information
File information
The English version of this package has the file attributes (or later file attributes) that are listed in the following worksheet. The dates and times for these files are listed in Coordinated Universal Time (UTC). When you view the file information, it is converted to local time. To find the difference between UTC and local time, use the Time Zone tab in the Date and Time item in Control Panel.
For all supported x64-based versions -
Download the list of files that are included in security update 5083245.
Information about protection and security
Protect yourself online: Windows Security support
Learn how we guard against cyber threats: Microsoft Security
Original source - Apr 14, 2026
- Date parsed from source:Apr 14, 2026
- First seen by Releasebot:Apr 15, 2026
Version 2603: April 14
Microsoft 365 adds Copilot editing in PowerPoint, letting users create, refine, and update presentations through natural conversation while preserving formatting and branding. It also supports brand kits for templates, approved images, and brand compliance checks for Microsoft 365 Copilot licensed users.
Version 2603 (Build 19822.20182)
Security updates listed here.
Feature updates
PowerPoint
- Copilot can edit your document in PowerPoint: Copilot in PowerPoint lets you create, edit, and refine presentations through natural conversation, directly in your presentation. You can start a new presentation or build on an existing one, asking Copilot to generate slides, update content, improve layouts, and polish design—while preserving formatting, structure, and branding. Copilot connects to your brand kit so you can apply branded templates, insert brand‑approved images, and check for brand compliance. Available to Microsoft 365 Copilot–licensed users.
- Apr 14, 2026
- Date parsed from source:Apr 14, 2026
- First seen by Releasebot:Apr 15, 2026
April 14, 2026—Baseline
Windows releases the April 2026 security baseline starting April 14, 2026.
The April 2026 security baseline will be available starting April 14, 2026. For more information, see KB5083769.
To learn more about release cadence, see the release notes for Hotpatch on Windows 11 Enterprise, version 25H2 and version 24H2.
Original source - Apr 14, 2026
- Date parsed from source:Apr 14, 2026
- First seen by Releasebot:Apr 15, 2026
April 14, 2026—KB5083768 (OS Build 28000.1836)
Windows releases a security update for Windows 11 version 26H1 with the latest protections and quality fixes. It adds Secure Boot status alerts in Windows Security, improves SMB compression over QUIC reliability, strengthens Remote Desktop phishing protection, and includes servicing stack improvements.
This security update for Windows 11, version 26H1 (KB5082052), includes the latest security improvements, along with non-security updates from last month’s optional preview release. To learn more about differences between security updates, optional non-security preview updates, Out-of-band (OOB) updates, and continuous innovation, see Windows monthly updates explained. For information on Windows update terminology, see the different types of Windows software updates.
To view the latest updates about this release, visit the Windows release health dashboard or the update history page for Windows 11, version 26H1.
Improvements
This security update contains fixes and quality improvements from KB5079466 (released March 10, 2026). The following summary outlines key issues addressed by this update. Also, included are available new features. The bold text within the brackets indicates the item or area of the change.
[Secure Boot]
New! The status of Secure Boot certificate updates on your device may be displayed in the Windows Security app (Settings > Privacy & security > Windows Security). Learn more about the status alerts via badges and notifications. These enhancements are disabled by default on commercial devices.
With this update, Windows quality updates include additional high confidence device targeting data, increasing coverage of devices eligible to automatically receive new Secure Boot certificates. Devices receive the new certificates only after demonstrating sufficient successful update signals, maintaining a controlled and phased rollout.
This update addresses an issue where the device might enter BitLocker Recovery after the Secure Boot updates.
[Networking]
This update improves reliability when Windows uses SMB compression over QUIC. After you install this update, SMB compression requests over QUIC complete more consistently, reducing the likelihood of timeouts and supporting smoother, more dependable performance.
[Remote Desktop]
This update improves protection against phishing attacks that use Remote Desktop (.rdp) files. When you open an .rdp file, Remote Desktop shows all requested connection settings before it connects, with each setting turned off by default. A one-time security warning also appears the first time you open an .rdp file on a device. For more information, see Understanding security warnings when opening Remote Desktop (RDP) files.
If you've already installed previous updates, your device will download and install only the new updates included in this package.
For more information about security vulnerabilities, see the Security Update Guide and the April 2026 Security Updates.
AI Components
This release updates the following AI components:
AI Component Version Image Search 1.2602.1451.0 Content Extraction 1.2602.1451.0 Semantic Analysis 1.2602.1451.0 Settings Model 1.2602.1451.0Windows 11 servicing stack update (KB5088834)- 28000.1837
This update makes quality improvements to the servicing stack, which is the component that installs Windows updates. Servicing stack updates (SSU) ensure that you have a robust and reliable servicing stack so that your devices can receive and install Microsoft updates. To learn more about SSUs, see Simplifying on-premises deployment of servicing stack updates.
Known issues in this update
Microsoft is not currently aware of any issues with this update.
How to get this update
Before you install this update
Microsoft combines the latest servicing stack update (SSU) for your operating system with the latest cumulative update (LCU). For general information about SSUs, see Servicing stack updates.
Install this update
To install this update, use one of the following Windows and Microsoft release channels.
Windows Update
Available | Next Step
Included | This update downloads and installs automatically from Windows Update and Microsoft Update.If you want to remove this update
Caution: Before you decide to remove this update, see Understanding the risks: Why you should not uninstall security updates.
To remove the LCU after installing the combined SSU and LCU package, use the DISM/Remove-Package command line option with the LCU package name as the argument. You can find the package name by using this command: DISM /online /get-packages.
Running Windows Update Standalone Installer (wusa.exe) with the /uninstall switch on the combined package will not work because the combined package contains the SSU. You cannot remove the SSU from the system after installation.
File information
For a list of the files provided in this update, download the file information for cumulative update 5083768.
For a list of the files provided in the servicing stack update, download the file information for the SSU (KB5088834) - version 28000.1837.
Original source - Apr 10, 2026
- Date parsed from source:Apr 10, 2026
- First seen by Releasebot:Apr 16, 2026
python-1.0.1
Agent Framework ships 1.0.1 with important checkpoint security hardening, restricting deserialization by default and adding opt-in custom type support. It also adds Cosmos DB NoSQL checkpoint storage, new Neo4j sample docs, and several core, OpenAI, and Foundry fixes.
1.0.1 - 2026-04-09
Important
Security hardening for FileCheckpointStorage: Checkpoint deserialization now flows through a restricted unpickler by default, which only permits a built-in set of safe Python types and all agent_framework framework types. If your application stores custom types in checkpoints, pass their "module:qualname" identifiers via the new allowed_checkpoint_types constructor parameter — otherwise loads will raise WorkflowCheckpointException. See Security Considerations for details and the opt-in format.
Added
- samples: Add sample documentation for two separate Neo4j context providers for retrieval and memory (#4010)
- agent-framework-azure-cosmos: Add Cosmos DB NoSQL checkpoint storage for Python workflows (#4916)
Changed
- docs: Remove pre-release flag from agent-framework installation instructions (#5082)
- samples: Revise agent examples in README.md (#5067)
- repo: Update CHANGELOG with v1.0.0 release (#5069)
- agent-framework-core: [BREAKING] Fix handoff workflow context management and improve AG-UI demo (#5136)
- agent-framework-core: Restrict persisted checkpoint deserialization by default (#4941)
- samples: Bump vite from 7.3.1 to 7.3.2 in /python/samples/05-end-to-end/ag_ui_workflow_handoff/frontend (#5132)
- python: Bump cryptography from 46.0.6 to 46.0.7 (#5176)
- python: Bump mcp from 1.26.0 to 1.27.0 (#5117)
- python: Bump mcp[ws] from 1.26.0 to 1.27.0 (#5119)
Fixed
- agent-framework-core: Raise clear handler registration error for unresolved TypeVar annotations (#4944)
- agent-framework-openai: Fix response_format crash on background polling with empty text (#5146)
- agent-framework-foundry: Strip tools from FoundryAgent request when agent_reference is present (#5101)
- agent-framework-core: Fix test compatibility for entity key validation (#5179)
- agent-framework-openai: Stop emitting duplicate reasoning content from response.reasoning_text.done and response.reasoning_summary_text.done events (#5162)
Full Changelog: python-1.0.0...python-1.0.1
Original source - Apr 10, 2026
- Date parsed from source:Apr 10, 2026
- First seen by Releasebot:Apr 16, 2026
dotnet-1.1.0
Agent Framework ships .NET 1.1.0 with better skill discovery, custom type support, stronger workflow and checkpoint handling, improved sample reliability, and updated docs and examples for a smoother developer experience.
Changes
3e864cd .NET: Update version to 1.1.0 (#5204)
14d2ab3 Standardize file skills terminology on 'directory' (#5205)
e5f7b9c .NET: Support reflection for discovery of resources and scripts in class-based skills (#5183)See More
1dd828d CHANGELOG Update with V1.0.0 Release (#5069)
8348584 VerifySamples: Filter projects to net10 only (#5184)
6d6cb84 .NET: Improve resilience of verify-samples by building separately and improving evaluation instructions (#5151)
79afda1 Samples fixes (#5169)
a7a02c1 Fix test compat for entity key validation (#5179)
7010dd7 .NET: Support custom types in skill resource and script functions (#5152)
e10d448 Fix handoff workflow context management and improve AG-UI demo (#5136)
942cb04 .NET: Fix compaction chat history duplication bug (#5149)
e224f06 .NET: Update models used in dotnet samples to gpt-5.4-mini (#5080)
826d8db .NET: fix: Concurrent Workflow Sample (#5090)
4134c74 Add CreateSessionAsync(conversationId) to FoundryAgent (#5144) [ #5138 ]
86b49d8 Fix and simplify ComputerUse sample (#5075)
d73c06f .NET: Align skill folder discovery with spec (#5078)
746c7da Revise agent examples in README.md (#5067)
d30103f .NET: Fix input signal issue during checkpoint restoration (#5085)
55ae57c .NET: Add Message Delivery Callback Overloads to Executor (#5081)
d284d96 fix: 04_MultiModelService sample (#5074)
d1a8115 Bump Anthropic from 12.8.0 to 12.11.0 (#5055)
9f0dbe5 .NET: Improve workflow unit test coverage (#5072)
3fc1d00 .NET: skill as class (#5027)
e4defad .NET: Add github actions workflow for verify-samples (#5034)This list of changes was auto generated.
Original source - Apr 10, 2026
- Date parsed from source:Apr 10, 2026
- First seen by Releasebot:Apr 11, 2026
- Modified by Releasebot:Apr 17, 2026
Version 147.0.3912.60: April 10, 2026
Microsoft Edge adds cross-platform policies, fixes an Edge and WebView2 deployment issue for WSUS and MSI-based enterprise packages, and introduces new management policies for guest mode, downloads, InPrivate access, PDF file access, XSLT, auth delegation, DLP, and protected content.
Release Summary
Feature Updates
New features and enhancements for the browser.
Fixes
Fixed various bugs, feature updates, and performance issues.
Security
Stable channel security updates are listed here. .
Feature Updates
- Cross-platform policies in the Edge management service.
Fixes
- Fixed an issue where Edge and WebView2 deployments via WSUS or MSI-based enterprise packages failed to install with disabled auto-update policy configuration.
Policy Updates
New policies- BrowserGuestModeEnforced - Enforce Edge guest mode
- DefaultDownloadDirectory - Set default download directory
- InPrivateModeUrlAllowlist - Allow access to a list of URLs in InPrivate mode.
- InPrivateModeUrlBlocklist - Block access to a list of URLs in InPrivate mode.
- PdfLocalFileAccessAllowedForDomains - Allow specified sites to access file:// URLs in the PDF Viewer
- XSLTEnabled - Control the availability of the XSLT feature
- AuthNegotiateDelegateByKdcPolicy - Use KDC policy to delegate credentials.
- MAMWithDeviceDLPEnabled - Allow MAM enrollment when managed device has Purview DLP policy configured
- ProtectedContentIdentifiersAllowed - Allows web pages to use identifiers for the purpose of protected content playback
- PostQuantumKeyAgreementEnabled - Enable post-quantum key agreement for TLS (obsolete)
Note
For the latest web platform features and updates, see the Microsoft Edge 147 web platform release notes (Apr. 2026).
Original source - Apr 9, 2026
- Date parsed from source:Apr 9, 2026
- First seen by Releasebot:Apr 10, 2026
Version 2603: April 09
Microsoft 365 fixes Access and Outlook issues and adds a Copilot chat pane improvement in Word.
Version 2603 (Build 19822.20168)
Resolved issues
Access
- Fixed an issue where some add-ins didn’t display a banner/info bar when an external recipient was added to an outgoing email in Outlook.
Outlook
- Resolved an issue where users could not close the Copilot chat pane using a keyboard. You can now close the pane by navigating to the Close button using a keyboard or by using the assigned keyboard shortcut.
Word
- When drafting with Copilot, users will see the Copilot chat pane open with their prompt.