Ongoing research into AI agent framework security identified an exploit chain in AutoGen Studio (AutoGen’s open-source prototyping user interface) that allows untrusted web content rendered by a ...

This sample demonstrates a .NET web App and native client calling a .NET web API that is secured using Azure AD. Further on the API will also call a downstream API on-behalf of the signed-in user. The ...

In some cases, SignalR does not respect the certificate validation callback function or the IgnoreSsl parameter when getting a persistent or non-persistent A2A event listener. SafeguardDotNet will use ...

This month’s collection of fixes from Microsoft includes 86 patches — but at least there were no zero-day bugs. Microsoft released 86 patches this week with updates for Office, Windows, and SQL Server ...

Imagine this: you’re working on a tight deadline, trying to access a critical app, and bam, you’re locked out because you forgot your password. Again. Now multiply that experience across five apps you ...

OAuth 2.0: The primary authentication protocol for all four providers. JWT (JSON Web Tokens): Used to securely transmit information between the API and the providers. Start by setting up a .NET Core ...

Take advantage of improved identity management in ASP.NET Core to implement identity-based authentication for minimal APIs quickly, easily, and with less code. Minimal APIs in ASP.NET Core allow us to ...

ASP.NET Core offers a simplified hosting model, called minimal APIs, that allows us to build lightweight APIs with minimal dependencies. However, “minimal” doesn’t mean minimal security. Minimal APIs ...

Microservices architecture has revolutionized the way we build and deploy applications. It offers flexibility, scalability, and agility, but it also brings challenges in terms of communication, ...

Web API Samples (C#) describes that we chose to use the Json.NET library together with the standard .NET framework HTTP messaging classes. The C# samples do include helper libraries that manage the ...