How can azure pipeline (Microsoft hosted agent) apply update on a db configured with private endpoint that allows only access within a vnet.
I created a flexible database server and secured access to it by configuring a private endpoint. As part of secure practices, I also disabled public and Azure services access. Now, I have built a script for database migration to apply to the database of the flexible server. This script will be deployed via Azure DevOps, but the trouble is that the pipeline fails to update the database, throwing network-related errors. They are keen about the security of this particular database and also want the migration script to be automated. How do I get the pipeline to apply the update without compromising security?
I enabled access to azure services on the network of the db but i do not want this solution for security reasons.