Azure DevOps Extensions

Build Version Updater is a specialized Azure DevOps Extension designed to solve a common challenge in build and release automation—managing version numbers across your deployment pipeline.

This extension provides automated updating of variables within build or release pipelines, enabling dynamic version management based on build numbers, dates, or custom logic. Rather than manually maintaining version numbers or relying on static configurations, Build Version Updater ensures your artifacts, assemblies, and deployments carry accurate, sequential version information that reflects your release cadence.

The extension is particularly valuable for teams practicing continuous integration and delivery, where version tracking across frequent builds is essential for traceability, rollback capabilities, and release management. It integrates seamlessly into your existing pipeline without requiring external scripts or complex workarounds.

For more information on details.

Replace in Files is a practical Azure DevOps Extension that addresses environment-specific configuration management during the build process.

This extension enables automatic replacement of values within source code files as part of your build pipeline. Common use cases include updating API endpoints for different environments, injecting configuration values specific to staging or production deployments, modifying connection strings based on target infrastructure, replacing placeholder values with actual deployment parameters, and updating version strings embedded in code or configuration files.

Rather than maintaining multiple versions of configuration files for each environment or manually editing files before deployment, Replace in Files automates this transformation process. The extension searches specified files for patterns or tokens and replaces them with appropriate values, ensuring your code is correctly configured for its destination environment without manual intervention or error-prone copy-paste operations.

This automation reduces deployment errors, simplifies configuration management, and enables true environment promotion where the same artifacts flow through your pipeline with only configuration differences.

For more information on details.

IIS Web App Secure is a security-focused Azure DevOps Extension that automates the hardening of web applications during release deployment.

This extension secures web applications deployed through MSDeploy (Web Deploy) within release pipelines, applying security configurations automatically as part of the deployment process. Rather than relying on manual security configuration after deployment or hoping security settings survive redeployment, IIS Web App Secure ensures consistent security posture across all deployments.

The extension can configure various security aspects of your IIS-hosted web applications including SSL/TLS settings and certificate bindings, authentication and authorization rules, request filtering and security headers, application pool identity and permissions, and other IIS security features that protect your application from common vulnerabilities.

By automating security configuration within your release pipeline, you ensure that every deployment maintains your security standards without requiring manual intervention from administrators. This consistency is crucial for compliance, reduces security vulnerabilities introduced by configuration drift, and eliminates the window between deployment and security configuration where applications might be exposed.

For more information on details.

Dot Net List Package Check is a proactive Azure DevOps Extension that addresses NuGet package management and security within .NET build pipelines.

This extension provides automated scanning and validation of NuGet package dependencies during the build process, enabling teams to detect potentially problematic packages before they reach production environments. Rather than discovering dependency issues, security vulnerabilities, or outdated packages after deployment, Dot Net List Package Check integrates directly into your CI/CD pipeline to enforce package quality standards and security requirements.

The extension is particularly valuable for teams managing complex .NET solutions with multiple dependencies, where understanding both direct and transitive package references is crucial for maintaining security posture, license compliance, and dependency health. It supports scanning at both solution and project levels, can detect deprecated packages, identify security vulnerabilities, check for available updates, and analyze transitive dependencies that might introduce hidden risks.

By automating package analysis within your build pipeline, the extension can optionally block builds that contain problematic dependencies, ensuring issues are caught and resolved during development rather than in production. All scan results are saved as build artifacts, providing traceability and audit capability for compliance and security reviews.

This automation enhances supply chain security, reduces technical debt from outdated dependencies, and provides development teams with immediate feedback about the health of their dependency ecosystem.

For more information on details.