Merge pull request #216 from rebelinux/dev

v0.9.7

Author: rebelinux

.github/workflows/CodeQL.yml

@@ -26,7 +26,7 @@ jobs:
     name: PSScriptAnalyzer
     runs-on: ubuntu-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
 
       - name: Run PSScriptAnalyzer
         uses: microsoft/[email protected]

.github/workflows/PSScriptAnalyzer.yml

@@ -5,7 +5,7 @@ jobs:
     name: Run PSScriptAnalyzer
     runs-on: ubuntu-latest
     steps:
-    - uses: actions/checkout@v4
+    - uses: actions/checkout@v5
     - name: lint
       uses: devblackops/github-action-psscriptanalyzer@master
       with:

.github/workflows/Release.yml

@@ -6,9 +6,9 @@ on:
 
 jobs:
   publish-to-gallery:
-    runs-on: windows-2022
+    runs-on: windows-latest
     steps:
-      - uses: actions/checkout@v4
+      - uses: actions/checkout@v5
       - name: Set PSRepository to Trusted for PowerShell Gallery
         shell: pwsh
         run: |
@@ -41,29 +41,29 @@ jobs:
         shell: pwsh
         run: |
           Publish-Module -Path ./ -NuGetApiKey ${{ secrets.PSGALLERY_API_KEY }} -Verbose
-  # tweet:
-  #   needs: publish-to-gallery
-  #   runs-on: ubuntu-latest
-  #   steps:
-  #     - uses: Eomm/why-don-t-you-tweet@v2
-  #       # We don't want to tweet if the repository is not a public one
-  #       if: ${{ !github.event.repository.private }}
-  #       with:
-  #         # GitHub event payload
-  #         # https://docs.github.com/en/developers/webhooks-and-events/webhooks/webhook-events-and-payloads#release
-  #         tweet-message: "[New Release] ${{ github.event.repository.name }} ${{ github.event.release.tag_name }}! Check out what's new! ${{ github.event.release.html_url }} #Microsoft #ActiveDirectory #AsBuiltReport #PowerShell #MicrosoftMVP #MVPBuzz #cybersecurity #infosec"
-  #       env:
-  #         TWITTER_CONSUMER_API_KEY: ${{ secrets.TWITTER_CONSUMER_API_KEY }}
-  #         TWITTER_CONSUMER_API_SECRET: ${{ secrets.TWITTER_CONSUMER_API_SECRET }}
-  #         TWITTER_ACCESS_TOKEN: ${{ secrets.TWITTER_ACCESS_TOKEN }}
-  #         TWITTER_ACCESS_TOKEN_SECRET: ${{ secrets.TWITTER_ACCESS_TOKEN_SECRET }}
-  # bsky-post:
-  #   needs: publish-to-gallery
-  #   runs-on: ubuntu-latest
-  #   steps:
-  #     - uses: zentered/bluesky-post-action@v0.2.0
-  #       with:
-  #         post: "[New Release] ${{ github.event.repository.name }} ${{ github.event.release.tag_name }}! Check out what's new! ${{ github.event.release.html_url }} #Microsoft #ActiveDirectory #AsBuiltReport #PowerShell #MicrosoftMVP #MVPBuzz #cybersecurity #infosec"
-  #       env:
-  #         BSKY_IDENTIFIER: ${{ secrets.BSKY_IDENTIFIER }}
-  #         BSKY_PASSWORD: ${{ secrets.BSKY_PASSWORD }}
+  tweet:
+    needs: publish-to-gallery
+    runs-on: ubuntu-latest
+    steps:
+      - uses: Eomm/why-don-t-you-tweet@v2
+        # We don't want to tweet if the repository is not a public one
+        if: ${{ !github.event.repository.private }}
+        with:
+          # GitHub event payload
+          # https://docs.github.com/en/developers/webhooks-and-events/webhooks/webhook-events-and-payloads#release
+          tweet-message: "[New Release] ${{ github.event.repository.name }} ${{ github.event.release.tag_name }}! Check out what's new! ${{ github.event.release.html_url }} #Microsoft #ActiveDirectory #AsBuiltReport #PowerShell #MicrosoftMVP #MVPBuzz #cybersecurity #infosec"
+        env:
+          TWITTER_CONSUMER_API_KEY: ${{ secrets.TWITTER_CONSUMER_API_KEY }}
+          TWITTER_CONSUMER_API_SECRET: ${{ secrets.TWITTER_CONSUMER_API_SECRET }}
+          TWITTER_ACCESS_TOKEN: ${{ secrets.TWITTER_ACCESS_TOKEN }}
+          TWITTER_ACCESS_TOKEN_SECRET: ${{ secrets.TWITTER_ACCESS_TOKEN_SECRET }}
+  bsky-post:
+    needs: publish-to-gallery
+    runs-on: ubuntu-latest
+    steps:
+      - uses: zentered/bluesky-post-action@v0.3.0
+        with:
+          post: "[New Release] ${{ github.event.repository.name }} ${{ github.event.release.tag_name }}! Check out what's new! ${{ github.event.release.html_url }} #Microsoft #ActiveDirectory #AsBuiltReport #PowerShell #MicrosoftMVP #MVPBuzz #cybersecurity #infosec"
+        env:
+          BSKY_IDENTIFIER: ${{ secrets.BSKY_IDENTIFIER }}
+          BSKY_PASSWORD: ${{ secrets.BSKY_PASSWORD }}

AsBuiltReport.Microsoft.AD.psd1

@@ -12,7 +12,7 @@
     RootModule = 'AsBuiltReport.Microsoft.AD.psm1'
 
     # Version number of this module.
-    ModuleVersion = '0.9.6'
+    ModuleVersion = '0.9.7'
 
     # Supported PSEditions
     # CompatiblePSEditions = @()
@@ -54,23 +54,23 @@
     RequiredModules = @(
         @{
             ModuleName = 'AsBuiltReport.Core';
-            ModuleVersion = '1.4.3'
+            ModuleVersion = '1.5.0'
         },
         @{
             ModuleName = 'PSPKI';
-            ModuleVersion = '4.2.0'
+            ModuleVersion = '4.3.0'
         },
         @{
             ModuleName = 'PScriboCharts';
             ModuleVersion = '0.9.0'
         },
         @{
             ModuleName = 'Diagrammer.Microsoft.AD';
-            ModuleVersion = '0.2.17'
+            ModuleVersion = '0.2.18'
         },
         @{
             ModuleName = 'Diagrammer.Core';
-            ModuleVersion = '0.2.27'
+            ModuleVersion = '0.2.34'
         }
 
     )

CHANGELOG.md

@@ -7,6 +7,20 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ##### This project is community maintained and has no sponsorship from Microsoft, its employees or any of its affiliates.
 
+## [0.9.7] - 2025-11-14
+
+### Changed
+
+- Update module version to 0.9.7
+- Upgrade Diagrammer.Core module to version `0.2.34`.
+- Upgrade Diagrammer.Microsoft.AD module to version `0.2.18`.
+- Upgrade zentered/bluesky-post-action to v0.3.0
+- Improve section paragraphs in multiple scripts for better clarity and understanding.
+
+### Fixed
+
+- Fix HealthChack in Get-AbrADDomainLastBackup script to correctly evaluate the 'Last Backup in Days' property as an integer.
+
 ## [0.9.6] - 2025-07-23
 
 ### Added

Src/Private/Get-AbrADCAAIA.ps1

@@ -5,7 +5,7 @@ function Get-AbrADCAAIA {
     .DESCRIPTION
 
     .NOTES
-        Version:        0.9.6
+        Version:        0.9.7
         Author:         Jonathan Colon
         Twitter:        @jcolonfzenpr
         Github:         rebelinux
@@ -29,7 +29,7 @@ function Get-AbrADCAAIA {
     process {
         if ($CA) {
             Section -Style Heading3 "Authority Information Access (AIA)" {
-                Paragraph "This section details the Certification Authority's Authority Information Access (AIA) configuration."
+                Paragraph "This section provides the Authority Information Access (AIA) configuration for the Certification Authority, which specifies where certificates and certificate revocation information can be retrieved."
                 BlankLine
                 try {
                     Write-PScriboMessage -Message "Collecting AD CA Authority Information Access information on $($CA.Name)."

Src/Private/Get-AbrADCACRLSetting.ps1

@@ -5,7 +5,7 @@ function Get-AbrADCACRLSetting {
     .DESCRIPTION
 
     .NOTES
-        Version:        0.9.6
+        Version:        0.9.7
         Author:         Jonathan Colon
         Twitter:        @jcolonfzenpr
         Github:         rebelinux
@@ -29,7 +29,7 @@ function Get-AbrADCACRLSetting {
     process {
         try {
             Section -Style Heading3 "Certificate Revocation List (CRL)" {
-                Paragraph "This section details the Certification Authority's Certificate Revocation List (CRL) Distribution Point configuration."
+                Paragraph "This section provides detailed information about the Certificate Revocation List (CRL) distribution settings and health status for the Certification Authority."
                 BlankLine
                 Section -Style Heading4 "CRL Validity Period" {
                     $OutObj = [System.Collections.ArrayList]::new()
@@ -101,7 +101,7 @@ function Get-AbrADCACRLSetting {
                 }
                 try {
                     Section -Style Heading4 "CRL Distribution Point" {
-                        Paragraph "This section details the configuration of the Certification Authority's CRL Distribution Points."
+                        Paragraph "This section provides detailed information about the Certificate Revocation List (CRL) Distribution Points configured on the Certification Authority, including URI locations and publication settings."
                         BlankLine
                         Write-PScriboMessage -Message "Collecting AD CA CRL Distribution Point information on $($CA.NAme)."
                         $CRL = Get-CRLDistributionPoint -CertificationAuthority $CA
@@ -145,7 +145,7 @@ function Get-AbrADCACRLSetting {
         }
         try {
             Section -Style Heading3 "AIA and CDP Health Status" {
-                Paragraph "This section provides a health check of the Certification Authority by verifying the CA certificate chain status and validating all Certificate Revocation List (CDP) and Authority Information Access (AIA) URLs for each certificate in the chain."
+                Paragraph "This section provides a comprehensive health check of the Certification Authority by verifying the CA certificate chain status and validating the accessibility of all Certificate Revocation List (CDP) and Authority Information Access (AIA) URLs for each certificate in the chain."
                 BlankLine
                 $OutObj = [System.Collections.ArrayList]::new()
                 $CAHealth = Get-EnterprisePKIHealthStatus -CertificateAuthority $CA

Src/Private/Get-AbrADCACryptographyConfig.ps1

@@ -5,7 +5,7 @@ function Get-AbrADCACryptographyConfig {
     .DESCRIPTION
 
     .NOTES
-        Version:        0.9.6
+        Version:        0.9.7
         Author:         Jonathan Colon
         Twitter:        @jcolonfzenpr
         Github:         rebelinux
@@ -32,7 +32,7 @@ function Get-AbrADCACryptographyConfig {
             $CryptoConfig = Get-CACryptographyConfig -CertificationAuthority $CA
             if ($CryptoConfig) {
                 Section -Style Heading3 "Cryptography Configuration" {
-                    Paragraph "This section provides detailed information about the cryptography configuration settings of the Certification Authority."
+                    Paragraph "The following section provides detailed information about the cryptography configuration settings for the Certification Authority, including algorithms, providers, and key specifications."
                     BlankLine
                     $OutObj = [System.Collections.ArrayList]::new()
                     try {

Src/Private/Get-AbrADCAKeyRecoveryAgent.ps1

@@ -5,7 +5,7 @@ function Get-AbrADCAKeyRecoveryAgent {
     .DESCRIPTION
 
     .NOTES
-        Version:        0.9.6
+        Version:        0.9.7
         Author:         Jonathan Colon
         Twitter:        @jcolonfzenpr
         Github:         rebelinux
@@ -45,7 +45,7 @@ function Get-AbrADCAKeyRecoveryAgent {
 
         if ($OutObj) {
             Section -Style Heading3 "Key Recovery Agent Certificate" {
-                Paragraph "This section provides details about the Key Recovery Agent certificate, which is used to encrypt users' certificate private keys for storage in the CA database. If a user loses access to their certificate private key, the Key Recovery Agent can recover it, provided that key archival was performed for the certificate."
+                Paragraph "This section provides details about the Key Recovery Agent certificate, which encrypts users' certificate private keys for storage in the CA database. If a user loses access to their certificate private key, the Key Recovery Agent can recover it when key archival was configured for the certificate."
                 BlankLine
                 foreach ($Item in $OutObj) {
                     $TableParams = @{

Src/Private/Get-AbrADCARoot.ps1

@@ -5,7 +5,7 @@ function Get-AbrADCARoot {
     .DESCRIPTION
 
     .NOTES
-        Version:        0.9.6
+        Version:        0.9.7
         Author:         Jonathan Colon
         Twitter:        @jcolonfzenpr
         Github:         rebelinux
@@ -27,7 +27,7 @@ function Get-AbrADCARoot {
         try {
             if ($CAs | Where-Object { $_.IsRoot -like 'True' }) {
                 Section -Style Heading2 "Enterprise Root Certificate Authority" {
-                    Paragraph "The following section details the Enterprise Root Certificate Authority (CA) configuration and status."
+                    Paragraph "The following section provides detailed information about the Enterprise Root Certificate Authority (CA) configuration and operational status."
                     BlankLine
                     foreach ($CA in ($CAs | Where-Object { $_.IsRoot -like 'True' })) {
                         $OutObj = [System.Collections.ArrayList]::new()