All Azure DevOps REST APIs now receive Detailed Personal Access Tokens (PATs). The goal of the change, which has been welcomed by the cybersecurity community, is to minimize the potential damage from a PAT credential leak.

Announcing the news via an Azure DevOps blog post, product manager Barry Wolfson said there was a “significant security risk to the organization prior to the change, given the potential for access to source code, production infrastructure and other valuable resources.”