Charles Lowell

> What is the single source of truth of this topic? That repo (https://github.com/Azure/azure-rest-api-specs) sounds promising but is it also used by all the Managed Identity services? All our flavors...

> 1. Agreed that there are many flavors of Managed Identity (MI). I guess that means we the SDKs can no longer operate with an assumption that "we expect a...

How will we handle logging PII? Another argument to `WithLogger`, or could we use slog to mark a message or part of a message as PII and leave handling that...

There are still a few things to address here: 1. we need tests 1. we should copy any `[]byte` from the application to make its content immutable 2. `Server` interpolates...

> What are those 3 options trying to address? I believe, regardless of whether a default `failPage` or an application-specified `s.optionErrorPage` is being used, [interpolation shall only accept escaped value...

What you reverted was correct--we should copy all slices provided by an application because slices are reference types. A slice value is a pointer to memory, not the content of...

I talked this over with SDK architects today and they pointed out that `text/template` uses reflection features that prevent the linker from identifying dead code ([see this presentation for an...

See Azure/azure-sdk-for-go#24812 for an example implementation

Thanks for opening this issue! Azure Arc has a unique protocol for managed identity authentication. If Azure Stack HCI's protocol is truly identical to IMDS's, then you don't want to...

@benbp these are internal standalone tools. We don't publish them and they have no tests, so the triggered pipelines are all irrelevant. Do we need to do something like add...