Announcements!

  • Windows Terminal v1.25.622.0 Release
    It sports a new search experience inside the Settings page, the ability to edit actions, command palette entries and key bindings with a rich editor–rather than just their key bindings–support for Kitty’s keyboard protocol and two completely new community translations!

Blogs, Articles, and Posts

  • Enable batch file secure mode in Windows 11 with LockBatchFilesWhenInUse: Lock running batch scripts
    Windows 11 Insider Preview builds introduce a new secure processing mode for batch files and CMD scripts. IT administrators can enable it via a registry value named LockBatchFilesWhenInUse, which prevents batch files from being altered while they execute. The feature also improves performance when Windows Defender Application Control (WDAC) code integrity policies are active. It is currently available in the Dev Channel build 26300.7939, and the Beta Channel build 26220.7934.
  • Measuring KPIs like Response Times for Shared Mailboxes
    Shared mailboxes are not CRM systems. However, many Microsoft 365 tenants use shared mailboxes to handle customer queries and then want to measure KPIs such as agent responsiveness to customer queries or the number of queries handled per agent in a month. As explored in this article, it’s possible to use the Microsoft Graph to extract some KPI-like data from shared mailboxes.
  • Monitoring Secure Boot certificate installation status with Intune and PowerShell
    Microsoft Secure Boot certificates issued by the 2011 Certificate Authorities (CAs) are expiring starting June 2026. Every Windows device with Secure Boot enabled must be updated to trust the 2023 certificates before expiration to retain security update support. Microsoft provides a monitoring-only approach using Intune Remediations that runs a PowerShell detection script on enrolled devices and reports Secure Boot and certificate status back to the Intune admin center — without making any changes to devices. This article explains the prerequisites, deployment steps, data collected, and how to read the results.
  • Discovering PowerShell provider dynamic parameters
    PowerShell ships with providers that expose things like file systems, the registry, certificates, environment variables, etc. To see which are available in your PowerShell session, you can use Get-PSProvider: Not surprisingly, these behave differently based on the type of data or objects they are working with.

Projects, Scripts, and Modules

  • DLLPickle
    A PowerShell module that helps you get un-stuck from dependency version conflicts that can occur when connecting to multiple Microsoft services in the same session.

Books, Media, and Learning Resources

Community

  • PowerShell is fun :) Hits 1,000,000 views!
    Congrats to Harm on crossing 1 million views mark! If you haven’t already be sure to check out his amazing site, filled with a ton of great content.
  • PowerShell Tools for PKI and Secure Boot with Richard Hicks
    Long-time Microsoft MVP and consultant Richard Hicks joins The PowerShell Podcast to talk about ADCS security, PKI misconfigurations, and why PowerShell is a consultant’s ultimate force multiplier. Richard shares real-world stories from auditing enterprise certificate environments, explains how simple template mistakes can lead to full domain compromise, and walks through tools like Locksmith that help administrators quickly identify dangerous configurations.

Events

Check out psweekly.dowst.dev for all past editions as well as a searchable archive.