Copilot QuickScan • Oversharing paths
Oversharing paths.
Copilot can amplify existing permission sprawl. This review focuses on permission-driven exposure paths, not content inspection.
What is reviewed
Patterns that typically create oversharing risk.
Common exposure patterns
- Broad groups and inherited permissions across shared sites.
- High-risk sharing defaults (link sharing, guest access posture, unmanaged groups).
- Cross-domain leakage risk (e.g., client data sites accessible beyond intended roles).
What is not reviewed by default
Designed to remain non-confidential unless explicitly authorized.
- Content-level sampling or document-by-document review
- Adversarial testing or prompt injection exercises
- Remediation implementation (separate scope)
What D2 contains
- Top exposure paths (ranked) and which permission patterns drive them
- Recommended actions with owners (IT vs Security vs Business owner)
- Notes for leadership decision-making (what changes risk meaningfully)