CSOonline

Report: PowerShell Gallery susceptible to typosquatting and other package-management attacks

Aqua Security says PowerShell issue can allow attacks involving registration of malicious packages with names similar to existing popular package names when developers make mistakes. Researchers are ...
Dark Reading

PowerShell Gallery Prone to Typosquatting, Other Supply Chain Attacks

Microsoft's PowerShell Gallery presents a software supply chain risk because of its relatively weak protections against attackers who want to upload malicious packages to the online repository, ...
Bleeping Computer

Microsoft PowerShell Gallery vulnerable to spoofing, supply chain attacks

Lax policies for package naming on Microsoft’s PowerShell Gallery code repository allow threat actors to perform typosquatting attacks, spoof popular packages and potentially lay the ground for ...
Infosecurity-magazine.com

Critical Flaws in PowerShell Gallery Enable Malicious Exploits

Aqua Nautilus has uncovered critical vulnerabilities persisting within the PowerShell Gallery, resulting in a fertile ground for malicious actors to exploit and launch attacks. These vulnerabilities, ...
MCPmag

Installing a Module from the PowerShell Gallery

For the longest time, the open source community had a ubiquitous concept called "public package repositories." Using utilities such as rpm, yum et al. is commonplace, but Microsoft never had the same ...
MCPmag

How To Upload a Module to the PowerShell Gallery

So you've built that great PowerShell module, and it's been saving you tons of time. Awesome! But, you're running into a problem: distribution. You may start by just using the module on your local ...
Hosted on MSN

I installed these PowerShell modules and they changed how I work

If you're still writing custom PowerShell scripts for basic file transfers and Excel reports, you're working too hard. Ready-made PowerShell modules handle most common tasks better than anything ...