ReleaseMicrosoftMicrosoftpublished May 14, 2026seen 3d

microsoft/azure-pipelines-tasks v274

microsoft/azure-pipelines-tasks

Open original ↗

Captured source

source ↗
GH
GitHub/github.com/microsoft/azure-pipelines-tasks
microsoft/azure-pipelines-tasks v274
Source ↗
published May 14, 2026seen 3dcaptured 9hhttp 200method plain

v274

Repository: microsoft/azure-pipelines-tasks

Tag: v274

Published: 2026-05-14T09:35:44Z

Prerelease: no

Release notes:

Sprint 274

AndroidSigning (V3)

  • Patch security vulnerabilities by bumping package dependencies (#22108)

ANT (V1)

  • Patch security vulnerabilities by bumping package dependencies (#22108)
  • Localization update (#22166)

AppCenterDistribute (V3)

  • Updated basic-ftp package to fix vulnerability in AppCenterDistributeV3 task (#22087)

ArchiveFiles (V2)

  • Patch security vulnerabilities by bumping package dependencies (#22108)

AzureAppServiceManage (V0)

  • Update openssl to 3.5.6 (#22072)

AzureAppServiceSettings (V1)

  • Update openssl to 3.5.6 (#22072)
  • Localization update (#22166)

AzureCLI (V2)

  • feat(AzureCLI): Implement security enhancements for scriptArguments validation (#22066)
  • Update openssl to 3.5.6 (#22072)
  • Update package dependencies and fix security vulnerabilities (#22100)
  • Localization update (#22166)

AzureCLI (V3)

  • feat(AzureCLI): Implement security enhancements for scriptArguments validation (#22066)
  • Update openssl to 3.5.6 (#22072)
  • Update package dependencies and fix security vulnerabilities (#22100)
  • AzureCLIV3: Add PIP_NO_DEPS fallback for azure-devops extension installation (#22160)
  • Localization update (#22166)

AzureContainerApps (V1)

  • Add parameter array to prevent command injection (#21920)
  • Patch security vulnerabilities by bumping package dependencies (#22108)
  • Localization update (#22166)

AzureFileCopy (V4)

  • Update openssl to 3.5.6 (#22072)

AzureFileCopy (V5)

  • Update openssl to 3.5.6 (#22072)

AzureFileCopy (V6)

  • Update openssl to 3.5.6 (#22072)
  • Localization update (#22166)

AzureFunctionAppContainer (V1)

  • Update openssl to 3.5.6 (#22072)
  • Fix CVE-2026-41672: Update @xmldom/xmldom 0.8.12 to 0.8.13 (CG Alert 433157) (#22096)
  • Localization update (#22166)

AzureFunctionApp (V1)

  • Update openssl to 3.5.6 (#22072)
  • Fix CVE-2026-41672: Update @xmldom/xmldom 0.8.12 to 0.8.13 (CG Alert 433157) (#22096)
  • Add L0 tests for AzureFunctionAppV1 and AzureFunctionAppV2 (#22125)
  • Localization update (#22166)
  • Fix symlink regression: bump webdeployment-common to ^4.274.1 in AzureFunctionAppV1 and V2 (#22168)

AzureFunctionApp (V2)

  • Update openssl to 3.5.6 (#22072)
  • Fix CVE-2026-41672: Update @xmldom/xmldom 0.8.12 to 0.8.13 (CG Alert 433157) (#22096)
  • Add L0 tests for AzureFunctionAppV1 and AzureFunctionAppV2 (#22125)
  • Fix symlink regression: bump webdeployment-common to ^4.274.1 in AzureFunctionAppV1 and V2 (#22168)

AzureFunctionOnKubernetes (V1)

  • Update openssl to 3.5.6 (#22072)

AzureFunction (V1)

  • Localization update (#22166)

AzureIoTEdge (V2)

  • Updated required version to fix vulnerabilities in AzureIoTEdgeV2 task (#22129)
  • Localization update (#22166)

AzureKeyVault (V2)

  • Update openssl to 3.5.6 (#22072)
  • Fix CRLF smuggling in AzureKeyVaultV2 (#22146)

AzureMysqlDeployment (V1)

  • Update openssl to 3.5.6 (#22072)
  • Fix CVE-2026-41672: Update @xmldom/xmldom 0.8.12 to 0.8.13 (CG Alert 433157) (#22096)
  • Localization update (#22166)

AzureMysqlDeployment (V2)

  • Update openssl to 3.5.6 (#22072)
  • Fix CVE-2026-41672: Upgrade webdeployment-common to 4.274.0 in AzureMysqlDeploymentV2 (#22098)

AzurePowerShell (V4)

  • Update openssl to 3.5.6 (#22072)
  • Update package dependencies and fix security vulnerabilities (#22100)

AzurePowerShell (V5)

  • Update openssl to 3.5.6 (#22072)
  • Update package dependencies and fix security vulnerabilities (#22100)
  • Localization update (#22166)

AzureResourceGroupDeployment (V2)

  • Update openssl to 3.5.6 (#22072)
  • Localization update (#22166)

AzureResourceManagerTemplateDeployment (V3)

  • Add parameter array to prevent command injection (#21920)
  • Update openssl to 3.5.6 (#22072)
  • Localization update (#22166)

AzureRmWebAppDeployment (V4)

  • Update openssl to 3.5.6 (#22072)
  • Fix CVE-2026-41672: Update @xmldom/xmldom 0.8.12 to 0.8.13 (CG Alert 433157) (#22096)
  • Localization update (#22166)

AzureRmWebAppDeployment (V5)

  • Update openssl to 3.5.6 (#22072)
  • Fix CVE-2026-41672: Update @xmldom/xmldom 0.8.12 to 0.8.13 (CG Alert 433157) (#22096)

AzureSpringCloud (V0)

  • Bump azure-pipelines-tasks-webdeployment-common to version 4.274.0 in AzureSpringCloudV0 (#22094)
  • Updated required version to fix vulnerabilities in AzureSpringCloudV0 (#22115)

AzureStaticWebApp (V0)

  • Localization update (#22166)

AzureTestPlan (V0)

  • Update docker-common package in AzureTestPlanV0 and ContainerStructureTestV0 tasks (#21985)
  • Upgrade dependencies to resolve security issues (#22137)
  • Localization update (#22166)
  • Update Task AzureTestPlanV0 & PublishTestResultsV1 versions to align with repository versioning scheme (#22175)

AzureVmssDeployment (V0)

  • Update openssl to 3.5.6 (#22072)
  • Update package dependencies and fix security vulnerabilities (#22100)
  • Localization update (#22166)

AzureVmssDeployment (V1)

  • Update openssl to 3.5.6 (#22072)
  • Update package dependencies and fix security vulnerabilities (#22100)

AzureWebAppContainer (V1)

  • Update openssl to 3.5.6 (#22072)
  • Fix CVE-2026-41672: Update @xmldom/xmldom 0.8.12 to 0.8.13 (CG Alert 433157) (#22096)
  • Localization update (#22166)

AzureWebApp (V1)

  • Update openssl to 3.5.6 (#22072)
  • Fix CG alert: update webdeployment-common to 4.274.0 to resolve @xmldom issue (#22093)
  • Update package dependencies and fix security vulnerabilities (#22100)
  • Localization update (#22166)

Bash (V3)

  • Patch security vulnerabilities by bumping package dependencies (#22108)
  • Localization update (#22166)

BicepDeploy (V0)

  • Localization update (#22166)

CacheBeta (V1)

  • Localization update (#22166)

Cache (V2)

  • Localization update (#22166)

CMake (V1)

  • Patch security vulnerabilities by bumping package dependencies (#22108)

CmdLine (V2)

  • Patch security vulnerabilities by bumping package dependencies (#22108)

CocoaPods (V0)

  • Patch security vulnerabilities by bumping package dependencies (#22108)

CondaAuthenticate (V0)

  • Localization update (#22166)

ContainerBuild (V0)

  • Update openssl to 3.5.6 (#22072)

ContainerStructureTest (V0)

  • Update docker-common package in AzureTestPlanV0 and ContainerStructureTestV0 tasks (#21985)
  • Deprecating the ContainerStructureTest task (#22088)
  • Upgrade dependencies to resolve security issues (#22137)

CopyFilesOverSSH (V0)

  • Patch security vulnerabilities by bumping package…

Excerpt shown — open the source for the full document.

Notability

notability 2.0/10

Routine tasks release, low impact