From c930073d42191e6d65127f7374b10d520d336d62 Mon Sep 17 00:00:00 2001
From: Sandeep Sen <sandeepsen@microsoft.com>
Date: Fri, 24 Oct 2025 17:33:28 -0700
Subject: [PATCH 1/4] Adding CELA approved warnings

---
 servers/Azure.Mcp.Server/README.md | 24 +++++++++++++++++++++++-
 1 file changed, 23 insertions(+), 1 deletion(-)

diff --git a/servers/Azure.Mcp.Server/README.md b/servers/Azure.Mcp.Server/README.md
index ad9138318d..754b263163 100644
--- a/servers/Azure.Mcp.Server/README.md
+++ b/servers/Azure.Mcp.Server/README.md
@@ -542,6 +542,12 @@ Your credentials are always handled securely through the official [Azure Identit
 
 MCP as a phenomenon is very novel and cutting-edge. As with all new technology standards, consider doing a security review to ensure any systems that integrate with MCP servers follow all regulations and standards your system is expected to adhere to. This includes not only the Azure MCP Server, but any MCP client/agent that you choose to implement down to the model provider.
 
+You should follow Microsoft security guidance for MCP servers, including enabling Entra ID authentication, secure token management, and network isolation. Refer to [Microsoft Security Documentation](https://learn.microsoft.com/en-us/azure/api-management/secure-mcp-servers) for details.
+
+## Permissions and Risk
+
+MCP clients can invoke operations based on the user’s Azure RBAC permissions. Autonomous or misconfigured clients may perform destructive actions. You should review and apply least-privilege RBAC roles and implement safeguards before deployment. Certain safeguards, such as flags to prevent destructive operations, are not standardized in the MCP specification and may not be supported by all clients.
+
 ## Data Collection
 
 <!-- remove-section: start vsix remove_data_collection_section_content -->
@@ -557,6 +563,22 @@ Telemetry collection is on by default.
 To opt out, set the environment variable `AZURE_MCP_COLLECT_TELEMETRY` to `false` in your environment.
 <!-- remove-section: end remove_telemetry_config_section -->
 
+## Compliance Responsibility
+
+This MCP server may interact with clients and services outside Microsoft compliance boundaries. You are responsible for ensuring that any integration complies with applicable organizational, regulatory, and contractual requirements.
+
+## Third Party Components
+
+This MCP server may use or depend on third party components.  You are responsible for reviewing and complying with the licenses and security posture of any third-party components.
+
+## Export Control
+
+Use of this software must comply with all applicable export laws and regulations, including U.S. Export Administration Regulations and local jurisdiction requirements.
+
+## No Warranty / Limitation of Liability
+
+This software is provided “as is” without warranties or conditions of any kind, either express or implied. Microsoft shall not be liable for any damages arising from use, misuse, or misconfiguration of this software.
+
 ## Contributing
 
 We welcome contributions to the Azure MCP Server! Whether you're fixing bugs, adding new features, or improving documentation, your contributions are welcome.
@@ -576,4 +598,4 @@ This project has adopted the
 For more information, see the
 [Code of Conduct FAQ](https://opensource.microsoft.com/codeofconduct/faq/)
 or contact [open@microsoft.com](mailto:open@microsoft.com)
-with any additional questions or comments.
\ No newline at end of file
+with any additional questions or comments.

From c0af01878df71b3637ab771f1f422d65798b4467 Mon Sep 17 00:00:00 2001
From: Sandeep Sen <sandeepsen@microsoft.com>
Date: Fri, 24 Oct 2025 17:36:48 -0700
Subject: [PATCH 2/4] Update servers/Azure.Mcp.Server/README.md

Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
---
 servers/Azure.Mcp.Server/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/servers/Azure.Mcp.Server/README.md b/servers/Azure.Mcp.Server/README.md
index 754b263163..7b5240be84 100644
--- a/servers/Azure.Mcp.Server/README.md
+++ b/servers/Azure.Mcp.Server/README.md
@@ -569,7 +569,7 @@ This MCP server may interact with clients and services outside Microsoft complia
 
 ## Third Party Components
 
-This MCP server may use or depend on third party components.  You are responsible for reviewing and complying with the licenses and security posture of any third-party components.
+This MCP server may use or depend on third party components. You are responsible for reviewing and complying with the licenses and security posture of any third-party components.
 
 ## Export Control
 

From 097c9fceb2242432c85316a8fe80e7f142434621 Mon Sep 17 00:00:00 2001
From: Sandeep Sen <sandeepsen@microsoft.com>
Date: Mon, 27 Oct 2025 10:37:37 -0700
Subject: [PATCH 3/4] removing localization in docs link

---
 servers/Azure.Mcp.Server/README.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/servers/Azure.Mcp.Server/README.md b/servers/Azure.Mcp.Server/README.md
index 7b5240be84..664fedefe6 100644
--- a/servers/Azure.Mcp.Server/README.md
+++ b/servers/Azure.Mcp.Server/README.md
@@ -542,7 +542,7 @@ Your credentials are always handled securely through the official [Azure Identit
 
 MCP as a phenomenon is very novel and cutting-edge. As with all new technology standards, consider doing a security review to ensure any systems that integrate with MCP servers follow all regulations and standards your system is expected to adhere to. This includes not only the Azure MCP Server, but any MCP client/agent that you choose to implement down to the model provider.
 
-You should follow Microsoft security guidance for MCP servers, including enabling Entra ID authentication, secure token management, and network isolation. Refer to [Microsoft Security Documentation](https://learn.microsoft.com/en-us/azure/api-management/secure-mcp-servers) for details.
+You should follow Microsoft security guidance for MCP servers, including enabling Entra ID authentication, secure token management, and network isolation. Refer to [Microsoft Security Documentation](https://learn.microsoft.com/azure/api-management/secure-mcp-servers) for details.
 
 ## Permissions and Risk
 

From 984d0c281b5d4caed47c5679632d8ca4e2e6ba2d Mon Sep 17 00:00:00 2001
From: Sandeep Sen <sandeepsen@microsoft.com>
Date: Mon, 27 Oct 2025 13:14:27 -0700
Subject: [PATCH 4/4] Updating ToC on Readme

---
 servers/Azure.Mcp.Server/README.md | 5 +++++
 1 file changed, 5 insertions(+)

diff --git a/servers/Azure.Mcp.Server/README.md b/servers/Azure.Mcp.Server/README.md
index 664fedefe6..12dd7c7873 100644
--- a/servers/Azure.Mcp.Server/README.md
+++ b/servers/Azure.Mcp.Server/README.md
@@ -33,7 +33,12 @@ All Azure MCP tools in a single server. The Azure MCP Server implements the [MCP
     - [Documentation](#documentation)
     - [Feedback and Support](#feedback-and-support)
     - [Security](#security)
+    - [Permissions and Risk](#permissions-and-risk)
     - [Data Collection](#data-collection)
+    - [Compliance Responsibility](#compliance-responsibility)
+    - [Third Party Components](#third-party-components)
+    - [Export Control](#export-control)
+    - [No Warranty / Limitation of Liability](#no-warranty--limitation-of-liability)
     - [Contributing](#contributing)
     - [Code of Conduct](#code-of-conduct)