Dark Reading

PowerShell Gallery Prone to Typosquatting, Other Supply Chain Attacks

Microsoft's PowerShell Gallery presents a software supply chain risk because of its relatively weak protections against attackers who want to upload malicious packages to the online repository, ...
Bleeping Computer

Latest PowerShell Gallery news

Lax policies for package naming on Microsoft's PowerShell Gallery code repository allow threat actors to perform typosquatting attacks, spoof popular packages and potentially lay the ground for ...
Infosecurity-magazine.com

Critical Flaws in PowerShell Gallery Enable Malicious Exploits

Aqua Nautilus has uncovered critical vulnerabilities persisting within the PowerShell Gallery, resulting in a fertile ground for malicious actors to exploit and launch attacks. These vulnerabilities, ...
MCPmag

How To Submit Your First Module to the PowerShell Gallery

Uploading your modules to the gallery will help with distribution headaches and allow for valuable feedback to come your way. So you've built that great PowerShell module, and it's been saving you ...
MCPmag

Uploading a PowerShell Gallery Module Directly to Azure Automation

Azure Automation can be an excellent PowerShell script orchestration tool. But as-is, you only have a limited number of PowerShell modules you can use in that environment. Luckily, though, we can ...
Redmond Magazine

Microsoft Commercially Releases PowerShell Secret Management Modules

Microsoft last week announced the release of two PowerShell modules that aim to make it easier to invoke scripted processes that require so-called "secrets" or passcodes to work. The new modules, ...