Microsoft Copilot (Microsoft 365): Copilot extensibility – Ability to use the Graph connector selector when using Teams Toolkit

🚨 The Signal: Developers can now select specific Graph connectors when building Copilot agents with Teams Toolkit. This improves the relevance and accuracy of AI responses by grounding them in targeted enterprise data sources, but also expands the potential data exposure surface.

The Impact

Developers and security teams are affected, with a risk of unintended data exposure if Graph connector access is not carefully managed.

• Developers: Can build more effective Copilot agents, but must understand data access implications.
• Security Teams: Need to review and potentially update data access policies for Copilot agents.
• Data Owners: Their data may be exposed to Copilot agents via Graph connectors if not properly secured.
• Compliance Teams: Must ensure Copilot agent data access aligns with regulatory and policy requirements.

The Action

1. Review existing Graph connector configurations for sensitive data exposure.
2. Implement granular access controls for Graph connectors used by Copilot agents.
3. Develop or update policies for Copilot agent data access and usage.
4. Educate developers on secure Graph connector selection and data handling best practices.
5. Monitor Copilot agent data access logs for anomalous activity.

Domain: Agentic-AI · Impact: high · Workload: Other