Skip to content

Add note about untrusted data#12885

Merged
sdwheeler merged 2 commits intoMicrosoftDocs:mainfrom
sdwheeler:sdw-w555959-untrusted-data
Mar 24, 2026
Merged

Add note about untrusted data#12885
sdwheeler merged 2 commits intoMicrosoftDocs:mainfrom
sdwheeler:sdw-w555959-untrusted-data

Conversation

@sdwheeler
Copy link
Copy Markdown
Collaborator

@sdwheeler sdwheeler commented Mar 24, 2026
edited by azure-boards Bot
Loading

PR Summary

Add note about untrusted data

PR Checklist

  • Descriptive Title: This PR's title is a synopsis of the changes it proposes.
  • Summary: This PR's summary describes the scope and intent of the change.
  • Contributor's Guide: I have read the contributor's guide.
  • Style: This PR adheres to the style guide.

Copilot AI review requested due to automatic review settings March 24, 2026 17:47
@learn-build-service-prod
Copy link
Copy Markdown
Contributor

learn-build-service-prod Bot commented Mar 24, 2026

PoliCheck Scan Report

The following report lists PoliCheck issues in PR files. Before you merge the PR, you must fix all severity-1 and severity-2 issues. The AI Review Details column lists suggestions for either removing or replacing the terms. If you find a false positive result, mention it in a PR comment and include this text: #policheck-false-positive. This feedback helps reduce false positives in future scans.

✅ No issues found

More information about PoliCheck

Information: PoliCheck | Severity Guidance | Term
For any questions: Try searching the learn.microsoft.com contributor guides or post your question in the Learn support channel.

Copilot AI reviewed Mar 24, 2026
View reviewed changes
Copy link
Copy Markdown
Contributor

Copilot AI left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Pull request overview

This PR updates PowerShell reference documentation to warn readers about security risks when using certain parameters/operators with untrusted input, and refreshes associated metadata/links across multiple versioned doc sets.

Changes:

  • Add repeated [!IMPORTANT] notes warning against using select parameters/operators with untrusted data (with an OWASP “Validate All Inputs” reference).
  • Update ms.date front matter in the touched docs.
  • Minor formatting/wording tweaks (line wrapping, contractions, link target updates in a few places).

Reviewed changes

Copilot reviewed 17 out of 17 changed files in this pull request and generated 3 comments.

Show a summary per file
File Description
reference/7.6/Microsoft.PowerShell.Management/Start-Process.md Adds untrusted-input security notes to relevant parameters; updates ms.date.
reference/7.6/Microsoft.PowerShell.Management/Invoke-Item.md Adds untrusted-input warning for -Path; minor formatting/link updates; updates ms.date.
reference/7.6/Microsoft.PowerShell.Core/Invoke-Command.md Adds untrusted-input security notes for parameters; updates ms.date.
reference/7.6/Microsoft.PowerShell.Core/About/about_Operators.md Adds untrusted-input warning for call operator &; adjusts link refs; updates ms.date.
reference/7.5/Microsoft.PowerShell.Management/Start-Process.md Adds untrusted-input security notes to relevant parameters; updates ms.date.
reference/7.5/Microsoft.PowerShell.Management/Invoke-Item.md Adds untrusted-input warning for -Path; updates ms.date.
reference/7.5/Microsoft.PowerShell.Core/Invoke-Command.md Adds untrusted-input security notes for parameters; updates ms.date.
reference/7.5/Microsoft.PowerShell.Core/About/about_Operators.md Adds untrusted-input warning for call operator &; adjusts link refs; updates ms.date.
reference/7.4/Microsoft.PowerShell.Management/Start-Process.md Adds untrusted-input security notes to relevant parameters; updates ms.date.
reference/7.4/Microsoft.PowerShell.Management/Invoke-Item.md Adds untrusted-input warning for -Path; minor formatting/link updates; updates ms.date.
reference/7.4/Microsoft.PowerShell.Core/Invoke-Command.md Adds untrusted-input security notes for parameters; updates ms.date.
reference/7.4/Microsoft.PowerShell.Core/About/about_Operators.md Adds untrusted-input warning for call operator &; adjusts link refs; updates ms.date.
reference/5.1/Microsoft.PowerShell.Management/Start-Process.md Adds untrusted-input security notes to relevant parameters; updates ms.date.
reference/5.1/Microsoft.PowerShell.Management/Show-EventLog.md Adds untrusted-input warning for -ComputerName; streamlines wording/formatting.
reference/5.1/Microsoft.PowerShell.Management/Invoke-Item.md Adds untrusted-input security notes for parameters; updates ms.date and link target.
reference/5.1/Microsoft.PowerShell.Core/Invoke-Command.md Adds untrusted-input security notes for parameters; updates ms.date.
reference/5.1/Microsoft.PowerShell.Core/About/about_Operators.md Adds untrusted-input warning for call operator &; adjusts link refs; updates ms.date.

💡 Add Copilot custom instructions for smarter, more guided reviews. Learn how to get started.

Comment thread reference/7.6/Microsoft.PowerShell.Management/Invoke-Item.md
Comment thread reference/7.5/Microsoft.PowerShell.Management/Invoke-Item.md
Comment thread reference/7.4/Microsoft.PowerShell.Management/Invoke-Item.md
@learn-build-service-prod
Copy link
Copy Markdown
Contributor

learn-build-service-prod Bot commented Mar 24, 2026

Learn Build status updates of commit 1d66696:

✅ Validation status: passed

File Status Preview URL Details
reference/5.1/Microsoft.PowerShell.Core/About/about_Operators.md ✅Succeeded View (powershell-5.1)
reference/5.1/Microsoft.PowerShell.Core/Invoke-Command.md ✅Succeeded View (powershell-5.1)
reference/5.1/Microsoft.PowerShell.Management/Invoke-Item.md ✅Succeeded View (powershell-5.1)
reference/5.1/Microsoft.PowerShell.Management/Show-EventLog.md ✅Succeeded View (powershell-5.1)
reference/5.1/Microsoft.PowerShell.Management/Start-Process.md ✅Succeeded View (powershell-5.1)
reference/7.4/Microsoft.PowerShell.Core/About/about_Operators.md ✅Succeeded View (powershell-7.4)
reference/7.4/Microsoft.PowerShell.Core/Invoke-Command.md ✅Succeeded View (powershell-7.4)
reference/7.4/Microsoft.PowerShell.Management/Invoke-Item.md ✅Succeeded View (powershell-7.4)
reference/7.4/Microsoft.PowerShell.Management/Start-Process.md ✅Succeeded View (powershell-7.4)
reference/7.5/Microsoft.PowerShell.Core/About/about_Operators.md ✅Succeeded View (powershell-7.5)
reference/7.5/Microsoft.PowerShell.Core/Invoke-Command.md ✅Succeeded View (powershell-7.5)
reference/7.5/Microsoft.PowerShell.Management/Invoke-Item.md ✅Succeeded View (powershell-7.5)
reference/7.5/Microsoft.PowerShell.Management/Start-Process.md ✅Succeeded View (powershell-7.5)
reference/7.6/Microsoft.PowerShell.Core/About/about_Operators.md ✅Succeeded View (powershell-7.6)
reference/7.6/Microsoft.PowerShell.Core/Invoke-Command.md ✅Succeeded View (powershell-7.6)
reference/7.6/Microsoft.PowerShell.Management/Invoke-Item.md ✅Succeeded View (powershell-7.6)
reference/7.6/Microsoft.PowerShell.Management/Start-Process.md ✅Succeeded View (powershell-7.6)

For more details, please refer to the build report.

@learn-build-service-prod
Copy link
Copy Markdown
Contributor

learn-build-service-prod Bot commented Mar 24, 2026

PoliCheck Scan Report

The following report lists PoliCheck issues in PR files. Before you merge the PR, you must fix all severity-1 and severity-2 issues. The AI Review Details column lists suggestions for either removing or replacing the terms. If you find a false positive result, mention it in a PR comment and include this text: #policheck-false-positive. This feedback helps reduce false positives in future scans.

✅ No issues found

More information about PoliCheck

Information: PoliCheck | Severity Guidance | Term
For any questions: Try searching the learn.microsoft.com contributor guides or post your question in the Learn support channel.

@learn-build-service-prod
Copy link
Copy Markdown
Contributor

learn-build-service-prod Bot commented Mar 24, 2026

Learn Build status updates of commit aeeac2d:

✅ Validation status: passed

File Status Preview URL Details
reference/5.1/Microsoft.PowerShell.Core/About/about_Operators.md ✅Succeeded View (powershell-5.1)
reference/5.1/Microsoft.PowerShell.Core/Invoke-Command.md ✅Succeeded View (powershell-5.1)
reference/5.1/Microsoft.PowerShell.Management/Invoke-Item.md ✅Succeeded View (powershell-5.1)
reference/5.1/Microsoft.PowerShell.Management/Show-EventLog.md ✅Succeeded View (powershell-5.1)
reference/5.1/Microsoft.PowerShell.Management/Start-Process.md ✅Succeeded View (powershell-5.1)
reference/7.4/Microsoft.PowerShell.Core/About/about_Operators.md ✅Succeeded View (powershell-7.4)
reference/7.4/Microsoft.PowerShell.Core/Invoke-Command.md ✅Succeeded View (powershell-7.4)
reference/7.4/Microsoft.PowerShell.Management/Invoke-Item.md ✅Succeeded View (powershell-7.4)
reference/7.4/Microsoft.PowerShell.Management/Start-Process.md ✅Succeeded View (powershell-7.4)
reference/7.5/Microsoft.PowerShell.Core/About/about_Operators.md ✅Succeeded View (powershell-7.5)
reference/7.5/Microsoft.PowerShell.Core/Invoke-Command.md ✅Succeeded View (powershell-7.5)
reference/7.5/Microsoft.PowerShell.Management/Invoke-Item.md ✅Succeeded View (powershell-7.5)
reference/7.5/Microsoft.PowerShell.Management/Start-Process.md ✅Succeeded View (powershell-7.5)
reference/7.6/Microsoft.PowerShell.Core/About/about_Operators.md ✅Succeeded View (powershell-7.6)
reference/7.6/Microsoft.PowerShell.Core/Invoke-Command.md ✅Succeeded View (powershell-7.6)
reference/7.6/Microsoft.PowerShell.Management/Invoke-Item.md ✅Succeeded View (powershell-7.6)
reference/7.6/Microsoft.PowerShell.Management/Start-Process.md ✅Succeeded View (powershell-7.6)

For more details, please refer to the build report.

@sdwheeler sdwheeler merged commit b9ffc89 into MicrosoftDocs:main Mar 24, 2026
5 checks passed
@sdwheeler sdwheeler deleted the sdw-w555959-untrusted-data branch April 1, 2026 19:26
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

Copilot code review Copilot Copilot left review comments

@michaeltlombardi michaeltlombardi Awaiting requested review from michaeltlombardi michaeltlombardi is a code owner

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@sdwheeler