Azure · Apr 2, 2026 · Apr 1, 2026 · Apr 1, 2026 · Copilot · Apr 2, 2026
diff --git a/...olver/DnsResolver.Autorest/generated/cmdlets/NewAzDnsResolverDomainList_CreateExpanded.cs b/...olver/DnsResolver.Autorest/generated/cmdlets/NewAzDnsResolverDomainList_CreateExpanded.cs
@@ -13,6 +13,7 @@ namespace Microsoft.Azure.PowerShell.Cmdlets.DnsResolver.Cmdlets
     /// [OpenAPI] CreateOrUpdate=>PUT:"/subscriptions/{subscriptionId}/resourceGroups/{resourceGroupName}/providers/Microsoft.Network/dnsResolverDomainLists/{dnsResolverDomainListName}"
     /// </remarks>
     [global::System.Management.Automation.Cmdlet(global::System.Management.Automation.VerbsCommon.New, @"AzDnsResolverDomainList_CreateExpanded", SupportsShouldProcess = true)]
+    [Microsoft.Azure.PowerShell.Cmdlets.DnsResolver.Runtime.CmdletBreakingChange("16.0.0", "2.0.0", "2026/05/01", ChangeDescription="The parameter 'Domain' is no longer mandatory. Domain lists will support bulk upload via the new cmdlet 'Invoke-AzDnsResolverBulkDnsResolverDomainList'.")]
     [Microsoft.Azure.PowerShell.Cmdlets.DnsResolver.Runtime.PreviewMessage("*****************************************************************************************\r\n* This cmdlet will undergo a breaking change in Az v16.0.0, to be released in May 2026. *\r\n* At least one change applies to this cmdlet.                                                     *\r\n* See all possible breaking changes at https://go.microsoft.com/fwlink/?linkid=2333486            *\r\n**************************************************************************************************")]
     [global::System.Management.Automation.OutputType(typeof(Microsoft.Azure.PowerShell.Cmdlets.DnsResolver.Models.Api20230701Preview.IDnsResolverDomainList))]
     [global::Microsoft.Azure.PowerShell.Cmdlets.DnsResolver.Description(@"Creates or updates a DNS resolver domain list.")]

diff --git a/src/DnsResolver/DnsResolver.Autorest/README.md b/src/DnsResolver/DnsResolver.Autorest/README.md
@@ -129,4 +129,34 @@ directive:
     set:
       preview-announcement:
         preview-message: "*****************************************************************************************\\r\\n* This cmdlet will undergo a breaking change in Az v16.0.0, to be released in May 2026. *\\r\\n* At least one change applies to this cmdlet.                                                     *\\r\\n* See all possible breaking changes at https://go.microsoft.com/fwlink/?linkid=2333486            *\\r\\n**************************************************************************************************"
+  # Breaking change: ActionBlockResponseCode parameter removed in 2025-10-01-preview
+  - where:
+      verb: New|Update
+      subject: PolicyDnsSecurityRule
+    set:
+      breaking-change:
+        change-description: The parameter 'ActionBlockResponseCode' has been removed. The block response code is no longer configurable in API version 2025-10-01-preview.
+        deprecated-by-version: 2.0.0
+        deprecated-by-azversion: 16.0.0
+        change-effective-date: 2026/05/01
+  # Breaking change: DnsResolverDomainList parameter no longer mandatory
+  - where:
+      verb: New
+      subject: PolicyDnsSecurityRule
+    set:
+      breaking-change:
+        change-description: The parameter 'DnsResolverDomainList' is no longer mandatory. DNS security rules will support managed domain lists as an alternative to user-defined domain lists.
+        deprecated-by-version: 2.0.0
+        deprecated-by-azversion: 16.0.0
+        change-effective-date: 2026/05/01
+  # Breaking change: Domain parameter no longer mandatory
+  - where:
+      verb: New
+      subject: DnsResolverDomainList
+    set:
+      breaking-change:
+        change-description: The parameter 'Domain' is no longer mandatory. Domain lists will support bulk upload via the new cmdlet 'Invoke-AzDnsResolverBulkDnsResolverDomainList'.
+        deprecated-by-version: 2.0.0
+        deprecated-by-azversion: 16.0.0
+        change-effective-date: 2026/05/01
 ```
diff --git a/src/DnsResolver/DnsResolver/ChangeLog.md b/src/DnsResolver/DnsResolver/ChangeLog.md
@@ -18,6 +18,10 @@
         - Additional information about change #1
 -->
 ## Upcoming Release
+* Added announcement for upcoming breaking changes as part of the 2025-10-01-preview API migration:
+    - Removed parameter `ActionBlockResponseCode` from `New-AzDnsResolverPolicyDnsSecurityRule` and `Update-AzDnsResolverPolicyDnsSecurityRule`. The block response code is no longer configurable.
+    - Parameter `DnsResolverDomainList` is no longer mandatory on `New-AzDnsResolverPolicyDnsSecurityRule`. DNS security rules will support managed domain lists as an alternative to user-defined domain lists.
+    - Parameter `Domain` is no longer mandatory on `New-AzDnsResolverDomainList`. Domain lists will support bulk upload via the new cmdlet `Invoke-AzDnsResolverBulkDnsResolverDomainList`, which will be introduced in the upcoming release.
-    - Parameter `Domain` is no longer mandatory on `New-AzDnsResolverDomainList`. Domain lists will support bulk upload via the new cmdlet `Invoke-AzDnsResolverBulkDnsResolverDomainList`, which will be introduced in the upcoming release.
+    - Parameter `Domain` is no longer mandatory on `New-AzDnsResolverDomainList`. Domain lists will support bulk upload via the new cmdlet `Invoke-AzDnsResolverBulkDnsResolverDomainList`, which is planned for a future release.
-    - Parameter `Domain` is no longer mandatory on `New-AzDnsResolverDomainList`. Domain lists will support bulk upload via the new cmdlet `Invoke-AzDnsResolverBulkDnsResolverDomainList`, which will be introduced in the upcoming release.
+    - Parameter `Domain` is no longer mandatory on `New-AzDnsResolverDomainList`. Domain lists will support bulk upload via the new cmdlet `Invoke-AzDnsResolverBulkDnsResolverDomainList`, which is planned for a future release.
 
 ## Version 1.2.1
 * Preannounced breaking changes. Please refer to https://go.microsoft.com/fwlink/?linkid=2333229