| Microsoft Graph DriveItem file upload/download | Yes, whole file | No | Download the .docx/.pptx/.xlsx stream, modify with a library, upload/replace content. This is the pattern Adam described. | Can collide with active Office locks; may overwrite unless guarded with eTags, versions, and conflict handling. |
| Microsoft Graph Excel workbook APIs | Yes, object-level Excel | Partial | Read/write worksheets, ranges, tables, charts, and formulas through persistent sessions. | Excel-specific; not available for Word/PowerPoint content editing through Graph. |
| Office.js add-in | Yes, inside open Office app | Adjacent | Runs in a user’s Office session and can read/write the open document with that user present. | Not an unattended bot in the file; add-in state is per-user and must handle stale data/coauthoring events. |
| Microsoft 365 Copilot app-native agents | Yes, within Microsoft’s product boundary | Microsoft-native | Copilot can create and edit files through Office-native capabilities while the user remains in control. | Available only through Microsoft’s Copilot stack, admin controls, licensing, tenant policy, and model-provider constraints. |
| WOPI cloud storage integration | Yes, for storage providers | Enables co-authoring, not bot editing | Lets Microsoft 365 for the web edit files stored in a partner storage service. Office for the web manages coauthor sessions. | Cloud Storage Partner Program is for storage ISVs, not ordinary Microsoft 365 customers or standalone bots. |
| Headless browser automation of Word for the web | Technically possible | Bad idea | A bot could impersonate a user’s browser interaction and type into Word for the web. | Fragile, hard to govern, likely against enterprise reliability/security expectations, and not an API contract. |