Update changelog, README, and version to 1.1.4; enhance guidance on Azure CLI extension and accepted controls functionality

aj-enns · aj-enns · commit 321c8d1d8d11 · 2026-05-19T11:16:48.000-05:00
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -14,6 +14,7 @@ and this project adheres to Semantic Versioning.
 - Executive summary counts now update locally when accepted remediation controls are excluded from active improvement opportunities.
 - Top 5 Remediation Actions now keeps its active-item counts and empty-state message in sync with accepted controls.
 - Accepted controls now expose a clear "Undo acceptance" action to move a control back into the active remediation list.
+- README guidance now reflects the current `-MaxParallel` default, automatic Azure DevOps CLI extension installation, and accepted-control workflow.
 
 ## [0.1.0] - 2026-05-19
 
diff --git a/README.md b/README.md
@@ -67,6 +67,7 @@ The folder contains:
 
 - [PowerShell](https://docs.microsoft.com/powershell/) 5.0+ (PowerShell 7+ recommended for parallel execution)
 - [Azure CLI](https://learn.microsoft.com/cli/azure/install-azure-cli) v2.81.0+
+- Azure DevOps Azure CLI extension (`azure-devops`) - installed automatically on first run if missing
 - An Azure CLI session authenticated with access to the target ADO organization (`az login`)
 - [GitHub Copilot](https://marketplace.visualstudio.com/items?itemName=GitHub.copilot) extension for VS Code (optional, for skill-assisted workflows)
 
@@ -93,6 +94,9 @@ Reports are saved to a timestamped subfolder under `assessments/`. The
 executive HTML summary auto-opens in your browser when the assessment
 completes.
 
+If the Azure DevOps Azure CLI extension is not already installed, adoqr
+installs it automatically before the review starts.
+
 ### Configuration File (optional)
 
 By default adoqr flags repositories and projects as inactive after **180 days**
@@ -148,7 +152,7 @@ the `User.Read.All` permission to be consented for the same identity.
 | `-Organization` | Yes | The ADO organization URL (e.g. `https://dev.azure.com/MyOrg`) or short name (`MyOrg`). |
 | `-Project` | No | One or more project names to assess. If omitted, all projects are assessed. |
 | `-OutputPath` | No | Directory for report files. Defaults to `assessments/` in the repo root. |
-| `-MaxParallel` | No | Maximum number of projects to assess concurrently. Default `1` (sequential). Requires PowerShell 7+. Recommended range: `3`–`5`. |
+| `-MaxParallel` | No | Maximum number of projects to assess concurrently. Default `3`. Requires PowerShell 7+ for parallel execution; PowerShell 5.1 falls back to sequential execution. Recommended range: `2`-`4` to reduce the chance of Azure DevOps throttling. |
 | `-IncludeGraphCheck` | No | Cross-references ADO users with Entra ID via Microsoft Graph API to detect deleted or disabled AAD users (USER-02). Requires `User.Read.All` Graph permissions via `az login`. |
 | `-OutputFormat` | No | One or more output formats: `markdown`, `html`, `json`, `all`. Defaults to `markdown,html`. Pass `json` or `all` to additionally write a structured `<org>-scan.json` document for downstream tooling and Copilot/MCP integrations. |
 
@@ -281,6 +285,10 @@ adopting the recommended best practices.
   tab with the recorded acceptance date. Accepted controls are stored per
   organization in the browser and reused by future remediation reports opened
   in the same browser.
+- Use **"Undo acceptance"** in the **Accepted Controls** tab to move a control
+  back into the active remediation list. The executive summary and **Top 5
+  Remediation Actions** update locally to exclude accepted controls from active
+  improvement counts.
 - After applying changes, re-run adoqr to verify the items are resolved.
 
 ![sample remediation plan](assets/remediation_steps.png)
diff --git a/VERSION b/VERSION
@@ -1 +1 @@
-1.1.3
+1.1.4
