User impact: Users may be unable to use unused OAuth app policies in App Governance.

More info: Affected users may notice policy evaluation has been temporarily suspended, meaning alerts won’t be generated and governance actions wont be executed. Existing policy configurations remain unchanged and will resume once normal operation is restored.

Current status: Whilst we’re continuing to develop a comprehensive fix to fully resolve the impact, we’ve confirmed that the initial fix has mitigated the issue for a subset of OAuth applications. The secondary fix is expected to be fully deployed by Friday, July 10, 2026.

Scope of impact: Your organization is affected by this event, and any users with unused OAuth app policies configured in App Governance may be impacted.

Estimated time to resolve: Friday, July 10, 2026

Root cause: A pre-existing code issue within the service, related to how “last used” data is calculated, was triggered under specific conditions, which is resulting in data inconsistencies.

Next update by: Friday, June 26, 2026, at 12:30 PM UTC