https://justinivins.com/tags/azure/Recent content in Azure on Justin Ivins' BlogHugoen-usMon, 01 Jun 2026 08:00:00 +0000https://justinivins.com/posts/external-security-controls-for-ai-assisted-development/Mon, 01 Jun 2026 08:00:00 +0000https://justinivins.com/posts/external-security-controls-for-ai-assisted-development/<p>Recently I&rsquo;ve been doing a lot of configuration work to standardize environments. One of the goals of this experiment was to have all of our applications driven by App Configuration instances backed by pass-through Key Vaults, so a developer could pull down a repository and, with the appropriate local and environment permissions, be completely up and running. All the application needed was a connection string to an App Configuration. This would dramatically reduce the spin-up time for a new developer.</p> <p>One thing I noticed (and kudos to Anthropic and Claude here) was that the AI starts to learn this pattern and take advantage of it. It naturally fills in the appropriate parameters with the App Configuration and Key Vault variables it has access to. And it really made me start to wonder: this agent, acting on my behalf, has complete control over any Key Vault parameter, secret, certificate, or password I personally have access to.</p> <p>The agent had full access to my identity. And yes, I have standing access to a lot of environments and a lot of parameters. It made me think. Down the road, would I catch a call where the agent had mistakenly gone out and grabbed a production value? Where something got run against a production environment by accident? That, in my mind, was a problem.</p>