| Version | Supported |
|---|---|
Latest on main |
✅ |
This project is a single-script tool (sccmpatch.ps1) without semantic versioning releases.
Only the current version on the main branch receives updates.
If you discover a security vulnerability in this project, please report it responsibly:
- Do not open a public GitHub issue for security vulnerabilities.
- Email the maintainer at the address listed in the repository profile, or use GitHub's private vulnerability reporting for this repository.
- Include a description of the vulnerability, steps to reproduce, and potential impact.
- You can expect an initial response within 7 business days.
This script operates with elevated privileges and interacts with infrastructure components:
- WinRM: The script uses
Invoke-Commandover WinRM. Ensure WinRM is configured with HTTPS (port 5986) or Kerberos authentication rather than basic/plaintext HTTP. - Service account: The Veeam Backup Administrator account used to run this script should follow least-privilege principles and must not have MFA enabled (Veeam PowerShell limitation per KB4535).
- Execution policy: The script requires an execution policy that permits script execution. Use
RemoteSignedorAllSignedrather thanUnrestricted.