Remediate code with Microsoft Security Copilot

Microsoft Defender for Cloud's integration with Microsoft Security Copilot allows you to remediate Infrastructure as Code (IaC) misconfigurations that are discovered in your code repositories. Remediating an IaC finding with Copilot allows you to address security misconfigurations and vulnerabilities early in the development cycle by automatically generating Pull Requests (PRs) that correct the identified weaknesses. Remediating these misconfigurations and vulnerabilities ensure that security issues in code are addressed accurately and promptly.

Prerequisites

Remediate an Infrastructure as Code scanning finding

With Microsoft Security Copilot in Defender for Cloud you can remediate recommendations.

  1. Sign in to the Azure portal.

  2. Search for and select Microsoft Defender for Cloud.

  3. Navigate to Recommendations.

  4. Search for and select the Azure DevOps repositories should have infrastructure as code scanning findings resolved recommendation.

    Screenshot that shows the searched for recommendation.

  5. Select Reduce risk with Copilot.

    Screenshot that shows where the summarize with copilot button is located.

  6. Select Help me remediate this recommendation.

  7. Select security check.

  8. Select the appropriate description.

  9. Select Select.

    Screenshot that shows where the select button is located.

  10. Review the summary of the code fix.

  11. Select Submit.

  12. Select the provided link.

  13. Review the PR.

Once the PR is generated in your code repository, you should have a developer review and approve the PR to have it merged into the code base.

Next step