Marco Gerber | Microsoft MVP
@marcogerber.ch
Curious potato, keen on Azure, Bicep and Infrastructure as Code. Microsoft Azure & AI Foundry MVP. Mountain climber and photography lover. Proud beer practitioner.
📍Switzerland North
🔗 https://marcogerber.ch/
📋 https://github.com/gerbermarco/cheat-sheets
📍Switzerland North
🔗 https://marcogerber.ch/
📋 https://github.com/gerbermarco/cheat-sheets
What if Bicep could do more than deploy to Azure? 🦾
With Bicep Local Deploy, you can extend Bicep much like Terraform providers - from automating deployments to managing on-prem or SaaS.
Learn more about how to use it, and what’s happening behind the scenes. 🔗
With Bicep Local Deploy, you can extend Bicep much like Terraform providers - from automating deployments to managing on-prem or SaaS.
Learn more about how to use it, and what’s happening behind the scenes. 🔗
Bicep Local Deploy - Deploy anything using Azure Bicep - marcogerber.ch
Discover Bicep Local Deploy, an experimental feature that enables custom extensions to run locally - taking Bicep beyond Azure.
marcogerber.ch
October 1, 2025 at 8:00 AM
What if Bicep could do more than deploy to Azure? 🦾
With Bicep Local Deploy, you can extend Bicep much like Terraform providers - from automating deployments to managing on-prem or SaaS.
Learn more about how to use it, and what’s happening behind the scenes. 🔗
With Bicep Local Deploy, you can extend Bicep much like Terraform providers - from automating deployments to managing on-prem or SaaS.
Learn more about how to use it, and what’s happening behind the scenes. 🔗
Coming: External Key Management to extend Azure Managed HSM 🔐
Bring your own keys from on-prem or trusted 3rd-party HSMs, no longer limited to Azure Key Vault/Managed HSM.
This will affect SLAs, since customers are responsible for their HSM and keys.
blogs.microsoft.com/blog/2025/06...
Bring your own keys from on-prem or trusted 3rd-party HSMs, no longer limited to Azure Key Vault/Managed HSM.
This will affect SLAs, since customers are responsible for their HSM and keys.
blogs.microsoft.com/blog/2025/06...
Announcing comprehensive sovereign solutions empowering European organizations - The Official Microsoft Blog
Today, we are taking the next step in strengthening our European digital commitments to empower our customers with greater choice, more control over their data privacy and the most robust digital resi...
blogs.microsoft.com
September 15, 2025 at 9:52 AM
Coming: External Key Management to extend Azure Managed HSM 🔐
Bring your own keys from on-prem or trusted 3rd-party HSMs, no longer limited to Azure Key Vault/Managed HSM.
This will affect SLAs, since customers are responsible for their HSM and keys.
blogs.microsoft.com/blog/2025/06...
Bring your own keys from on-prem or trusted 3rd-party HSMs, no longer limited to Azure Key Vault/Managed HSM.
This will affect SLAs, since customers are responsible for their HSM and keys.
blogs.microsoft.com/blog/2025/06...
Upload blocked by DLP - until it saw my new Information Security Administrator Associate certificate 🎉
learn.microsoft.com/api/credenti...
learn.microsoft.com/api/credenti...
Microsoft Certified: Information Security Administrator Associate
learn.microsoft.com
September 12, 2025 at 7:42 AM
Upload blocked by DLP - until it saw my new Information Security Administrator Associate certificate 🎉
learn.microsoft.com/api/credenti...
learn.microsoft.com/api/credenti...
Azure Bastion integration with AKS is now in public preview. Use Azure CLI to open a tunnel to a private AKS cluster, which uses the Bastion host in the background. AKS clusters with public FQDN disabled aren't currently supported.
learn.microsoft.com/en-us/azure/...
learn.microsoft.com/en-us/azure/...
Connect to AKS Private Cluster Using Azure Bastion (Preview) - Azure Bastion
Learn how to securely connect to Azure Kubernetes Service (AKS) private clusters using Azure Bastion's native client tunneling. Step-by-step guide with prerequisites and commands to establish secure a...
learn.microsoft.com
August 18, 2025 at 3:34 PM
Azure Bastion integration with AKS is now in public preview. Use Azure CLI to open a tunnel to a private AKS cluster, which uses the Bastion host in the background. AKS clusters with public FQDN disabled aren't currently supported.
learn.microsoft.com/en-us/azure/...
learn.microsoft.com/en-us/azure/...
I encountered a new error during Bicep deployments that worked fine until recently:
❗The content for this response was already consumed❗
Looks like it started with Azure CLI 2.73.0 - errors don’t show properly.
Read more details and solutions in my latest blog post: marcogerber.ch/the-content-...
❗The content for this response was already consumed❗
Looks like it started with Azure CLI 2.73.0 - errors don’t show properly.
Read more details and solutions in my latest blog post: marcogerber.ch/the-content-...
Bicep: The content for this response was already consumed - marcogerber.ch
Troubleshooting the "The content for this response was already consumed" error in Azure Bicep deployments with Azure CLI.
marcogerber.ch
June 20, 2025 at 5:01 AM
I encountered a new error during Bicep deployments that worked fine until recently:
❗The content for this response was already consumed❗
Looks like it started with Azure CLI 2.73.0 - errors don’t show properly.
Read more details and solutions in my latest blog post: marcogerber.ch/the-content-...
❗The content for this response was already consumed❗
Looks like it started with Azure CLI 2.73.0 - errors don’t show properly.
Read more details and solutions in my latest blog post: marcogerber.ch/the-content-...
Looks like there is an issue in the Azure portal where resources cannot be found. Related actions are failing as a result. I've observed this behavior across multiple tenants.
May 28, 2025 at 9:16 AM
Looks like there is an issue in the Azure portal where resources cannot be found. Related actions are failing as a result. I've observed this behavior across multiple tenants.
I've built a simple Streamlit chat app using the Azure AI Inference client for quick model testing, PoC's, and demos.
🧩 Features:
- Text & image input
- Model switcher
- System prompt presets
- Session-based chat history
- Console logging for debugging
Check it out: marcogerber.ch/streamlit-ch...
🧩 Features:
- Text & image input
- Model switcher
- System prompt presets
- Session-based chat history
- Console logging for debugging
Check it out: marcogerber.ch/streamlit-ch...
May 27, 2025 at 8:04 PM
I've built a simple Streamlit chat app using the Azure AI Inference client for quick model testing, PoC's, and demos.
🧩 Features:
- Text & image input
- Model switcher
- System prompt presets
- Session-based chat history
- Console logging for debugging
Check it out: marcogerber.ch/streamlit-ch...
🧩 Features:
- Text & image input
- Model switcher
- System prompt presets
- Session-based chat history
- Console logging for debugging
Check it out: marcogerber.ch/streamlit-ch...
Very interesting article: Prompt injection attacks on vision language models in oncology
www.nature.com/articles/s41...
www.nature.com/articles/s41...
Prompt injection attacks on vision language models in oncology - Nature Communications
Vision-language artificial intelligence models (VLMs) can be employed to recognize lesions in cancer images. Here, the authors show that VLMs can be misled by prompt injection attacks, producing harmf...
www.nature.com
May 6, 2025 at 5:03 PM
Very interesting article: Prompt injection attacks on vision language models in oncology
www.nature.com/articles/s41...
www.nature.com/articles/s41...
Defender for AI Services is now GA and available for all subscriptions! 🛡️
Learn more about its capabilities: marcogerber.ch/defender-for...
Learn more about its capabilities: marcogerber.ch/defender-for...
Defender for Cloud - Threat protection for AI workloads - marcogerber.ch
Explore threat protection for AI Services in Defender for Cloud, including the new AI Services protection plan, concept, alerts, and more.
marcogerber.ch
May 1, 2025 at 1:55 PM
Defender for AI Services is now GA and available for all subscriptions! 🛡️
Learn more about its capabilities: marcogerber.ch/defender-for...
Learn more about its capabilities: marcogerber.ch/defender-for...
Public Preview: Azure virtual network terminal access point (TAP). Virtual network TAP (agentless) leverages Azure’s native infrastructure to mirror traffic with minimal overhead and zero performance impact on VMs.
azure.microsoft.com/en-us/update...
azure.microsoft.com/en-us/update...
Azure updates | Microsoft Azure
Subscribe to Microsoft Azure today for service updates, all in one place. Check out the new Cloud Platform roadmap to see our latest product plans.
azure.microsoft.com
April 30, 2025 at 7:05 AM
Public Preview: Azure virtual network terminal access point (TAP). Virtual network TAP (agentless) leverages Azure’s native infrastructure to mirror traffic with minimal overhead and zero performance impact on VMs.
azure.microsoft.com/en-us/update...
azure.microsoft.com/en-us/update...
Finally! Easy service upgrade and change service tier in Azure AI Search (Public Preview).
Azure AI Search now lets you easily change service tiers between Basic, S1, S2, and S3 tiers or upgrade for more capacity and features - no rebuild or reindexing needed.
azure.microsoft.com/en-us/update...
Azure AI Search now lets you easily change service tiers between Basic, S1, S2, and S3 tiers or upgrade for more capacity and features - no rebuild or reindexing needed.
azure.microsoft.com/en-us/update...
Azure updates | Microsoft Azure
Subscribe to Microsoft Azure today for service updates, all in one place. Check out the new Cloud Platform roadmap to see our latest product plans.
azure.microsoft.com
April 24, 2025 at 8:37 AM
Finally! Easy service upgrade and change service tier in Azure AI Search (Public Preview).
Azure AI Search now lets you easily change service tiers between Basic, S1, S2, and S3 tiers or upgrade for more capacity and features - no rebuild or reindexing needed.
azure.microsoft.com/en-us/update...
Azure AI Search now lets you easily change service tiers between Basic, S1, S2, and S3 tiers or upgrade for more capacity and features - no rebuild or reindexing needed.
azure.microsoft.com/en-us/update...
Public Preview: Remote Model Context Protocol (MCP) support in Azure Functions.
Azure Functions now supports an early preview of triggers and bindings for building tools with remote MCP and server-sent events (SSE).
azure.microsoft.com/en-gb/update...
Azure Functions now supports an early preview of triggers and bindings for building tools with remote MCP and server-sent events (SSE).
azure.microsoft.com/en-gb/update...
Azure updates | Microsoft Azure
Subscribe to Microsoft Azure today for service updates, all in one place. Check out the new Cloud Platform roadmap to see our latest product plans.
azure.microsoft.com
April 17, 2025 at 6:52 AM
Public Preview: Remote Model Context Protocol (MCP) support in Azure Functions.
Azure Functions now supports an early preview of triggers and bindings for building tools with remote MCP and server-sent events (SSE).
azure.microsoft.com/en-gb/update...
Azure Functions now supports an early preview of triggers and bindings for building tools with remote MCP and server-sent events (SSE).
azure.microsoft.com/en-gb/update...
Today's learning 💡 Private Endpoints generate a /32 default route that automatically propagates within their vnet and peered vnets. In hub-spoke architectures, this can inadvertently bypass firewalls or an NVA. To mitigate this, take a look at 'Network Policies for Private Endpoints'.
April 16, 2025 at 12:05 PM
Today's learning 💡 Private Endpoints generate a /32 default route that automatically propagates within their vnet and peered vnets. In hub-spoke architectures, this can inadvertently bypass firewalls or an NVA. To mitigate this, take a look at 'Network Policies for Private Endpoints'.
Using 'extends' in Azure Bicep forces all parameters from the root file to be inherited and used. I suggested making this optional in a GitHub Issue - give it a thumbs up or +1 if you’d find that useful!👍
github.com/Azure/bicep/...
github.com/Azure/bicep/...
Make Inherited Parameters Optional in Bicep `extends` Feature · Issue #16813 · Azure/bicep
Is your feature request related to a problem? Please describe. When using the extendable Bicep parameters feature, all parameters from a root parameter file need to be used in all inherited Bicep f...
github.com
April 15, 2025 at 5:48 AM
Using 'extends' in Azure Bicep forces all parameters from the root file to be inherited and used. I suggested making this optional in a GitHub Issue - give it a thumbs up or +1 if you’d find that useful!👍
github.com/Azure/bicep/...
github.com/Azure/bicep/...
There seems to be an issue with hosted agents on Azure DevOps Pipelines and GitHub Actions. An error occurs when using ubuntu-latest and the Azure CLI task to deploy Bicep files:
ERROR: [Errno 2] No such file or directory: '/home/vsts/work/_temp/.azclitask/bin/bicep'
github.com/Azure/azure-...
ERROR: [Errno 2] No such file or directory: '/home/vsts/work/_temp/.azclitask/bin/bicep'
github.com/Azure/azure-...
Az bicep lint throws NotFound Exception Error on Microsoft hosted build-agent (Azure Pipelines) when using AzCli tasks · Issue #31226 · Azure/azure-cli
Describe the bug Running az bicep lint via the AzCLI task in ADO is failing with an error. This job was working fine until the last hour or so and just stopped working. ADO Logs: az bicep lint --fi...
github.com
April 11, 2025 at 8:11 AM
There seems to be an issue with hosted agents on Azure DevOps Pipelines and GitHub Actions. An error occurs when using ubuntu-latest and the Azure CLI task to deploy Bicep files:
ERROR: [Errno 2] No such file or directory: '/home/vsts/work/_temp/.azclitask/bin/bicep'
github.com/Azure/azure-...
ERROR: [Errno 2] No such file or directory: '/home/vsts/work/_temp/.azclitask/bin/bicep'
github.com/Azure/azure-...
Copilot in Azure is now generally available, with all current capabilities remaining free of charge.
techcommunity.microsoft.com/blog/azurein...
techcommunity.microsoft.com/blog/azurein...
Microsoft Copilot in Azure is now generally available | Microsoft Community Hub
Today, we are excited to announce General Availability (GA) of Copilot in Azure. We are also thrilled to share that the current capabilities of Copilot in...
techcommunity.microsoft.com
April 9, 2025 at 12:50 PM
Copilot in Azure is now generally available, with all current capabilities remaining free of charge.
techcommunity.microsoft.com/blog/azurein...
techcommunity.microsoft.com/blog/azurein...
Reposted by Marco Gerber | Microsoft MVP
Maintainers: Did you know you could spend less time doing repetitive tasks and more time coding? 💡
Maintainership will never be the same once you start using these GitHub Actions. ⬇️
github.blog/open-source/...
Maintainership will never be the same once you start using these GitHub Actions. ⬇️
github.blog/open-source/...
5 GitHub Actions every maintainer needs to know
With these actions, you can keep your open source projects organized, minimize repetitive and manual tasks, and focus more on writing code.
github.blog
April 5, 2025 at 7:20 PM
Maintainers: Did you know you could spend less time doing repetitive tasks and more time coding? 💡
Maintainership will never be the same once you start using these GitHub Actions. ⬇️
github.blog/open-source/...
Maintainership will never be the same once you start using these GitHub Actions. ⬇️
github.blog/open-source/...
A new Computer-Using Agent (CUA) is coming to the Azure AI Foundry. This allows you to automate UI driven workflows, like autonomous UI navigation. I wonder how this works in real life and whether this is the right approach for sustainable automation.
azure.microsoft.com/en-us/blog/a...
azure.microsoft.com/en-us/blog/a...
Announcing the Responses API and Computer-Using Agent in Azure AI Foundry | Microsoft Azure Blog
We’re excited to introduce two powerful innovations in Azure AI Foundry. Learn more.
azure.microsoft.com
April 2, 2025 at 7:34 AM
A new Computer-Using Agent (CUA) is coming to the Azure AI Foundry. This allows you to automate UI driven workflows, like autonomous UI navigation. I wonder how this works in real life and whether this is the right approach for sustainable automation.
azure.microsoft.com/en-us/blog/a...
azure.microsoft.com/en-us/blog/a...
Arrived in Seattle after a great flight right over Greenland, what a view! Ready for my first MVP Summit, can‘t wait to meet everybody 👋🏻 😃
#MVPBuzz #MVPSummit @alschneiter.bsky.social
#MVPBuzz #MVPSummit @alschneiter.bsky.social
March 23, 2025 at 3:05 PM
Arrived in Seattle after a great flight right over Greenland, what a view! Ready for my first MVP Summit, can‘t wait to meet everybody 👋🏻 😃
#MVPBuzz #MVPSummit @alschneiter.bsky.social
#MVPBuzz #MVPSummit @alschneiter.bsky.social
Retirement: Kubenet Networking for Azure Kubernetes Service to Be Retired on March 31, 2028. Upgrade to CNI overlay in time.
azure.microsoft.com/en-gb/update...
azure.microsoft.com/en-gb/update...
Azure updates | Microsoft Azure
Subscribe to Microsoft Azure today for service updates, all in one place. Check out the new Cloud Platform roadmap to see our latest product plans.
azure.microsoft.com
March 20, 2025 at 8:49 AM
Retirement: Kubenet Networking for Azure Kubernetes Service to Be Retired on March 31, 2028. Upgrade to CNI overlay in time.
azure.microsoft.com/en-gb/update...
azure.microsoft.com/en-gb/update...
Reposted by Marco Gerber | Microsoft MVP
Export as Bicep is fully available today! 💪
Test it out yourself in the portal, instructions can be found here: learn.microsoft.com/en-us/azure/...
Test it out yourself in the portal, instructions can be found here: learn.microsoft.com/en-us/azure/...
March 19, 2025 at 6:50 PM
Export as Bicep is fully available today! 💪
Test it out yourself in the portal, instructions can be found here: learn.microsoft.com/en-us/azure/...
Test it out yourself in the portal, instructions can be found here: learn.microsoft.com/en-us/azure/...
New blog post 📢 Learn more about Dev Containers and how to quickly spin up containerized, reproducible development environments, including a cheat sheet to get you started.
Check it out: marcogerber.ch/dev-c...
Check it out: marcogerber.ch/dev-c...
Dev Containers: Develop inside a container - marcogerber.ch
Discover how Dev Containers in VS Code simplify development by providing consistent, containerized environments.
marcogerber.ch
March 18, 2025 at 3:40 PM
New blog post 📢 Learn more about Dev Containers and how to quickly spin up containerized, reproducible development environments, including a cheat sheet to get you started.
Check it out: marcogerber.ch/dev-c...
Check it out: marcogerber.ch/dev-c...
You can now use the Vision input in VS Code and Visual Studio in public preview.
github.blog/changelog/20...
github.blog/changelog/20...
Copilot Chat users can now use the Vision input in VS Code and Visual Studio in public preview · GitHub Changelog
Copilot Chat users can now use the Vision input in VS Code and Visual Studio in public preview
github.blog
March 18, 2025 at 12:53 PM
You can now use the Vision input in VS Code and Visual Studio in public preview.
github.blog/changelog/20...
github.blog/changelog/20...
