SydneyhSmith
commented
1 year ago Thanks @Kazzan we will take a look into this
Open Kazzan opened 1 year ago
SydneyhSmith
commented
1 year ago Thanks @Kazzan we will take a look into this
sassdawe
commented
1 year ago Hi @SydneyhSmith, I just ran into this myself and it's a bit concerning to be honest. Thanks!
Summary of the new feature / enhancement
Hi, currently the Azure AD Application record for PowerShell Gallery "PowerShell Gallery [PROD]" is not published by verified publisher "Microsoft Corporation". The standard recommendation of Microsoft Defender for Clous Apps (MDCA), the OAuth Apps Review marks this application as possible fake impersonating Microsoft.
Proposed technical implementation details (optional)
This should be improved by signing this MSAL SSO integration for AAD (or even personal MSA accounts) to make this application more trustworthy.