Merge branch 'develop' into main

Author: Romanitho

.github/workflows/GA_Close-Inactive-Issues.yml

@@ -13,7 +13,7 @@ jobs:
       issues: write
       pull-requests: write
     steps:
-      - uses: actions/stale@v9
+      - uses: actions/stale@v10
         with:
           days-before-issue-stale: 30
           days-before-issue-close: 14

.github/workflows/GA_Mega-linter.yml

@@ -43,7 +43,7 @@ jobs:
         id: ml
         # You can override MegaLinter flavor used to have faster performances
         # More info at https://megalinter.github.io/flavors/
-        uses: oxsecurity/megalinter@e08c2b05e3dbc40af4c23f41172ef1e068a7d651 # v8.8.0
+        uses: oxsecurity/megalinter@62c799d895af9bcbca5eacfebca29d527f125a57 # v9.1.0
         env:
           # All available variables are described in documentation
           # https://megalinter.github.io/configuration/
@@ -90,7 +90,7 @@ jobs:
         run: sudo chown -Rc $UID .git/
       - name: Commit and push applied linter fixes
         if: steps.ml.outputs.has_updated_sources == 1 && (env.APPLY_FIXES_EVENT == 'all' || env.APPLY_FIXES_EVENT == github.event_name) && env.APPLY_FIXES_MODE == 'commit' && github.ref != 'refs/heads/main' && (github.event_name == 'push' || github.event.pull_request.head.repo.full_name == github.repository) && !contains(github.event.head_commit.message, 'skip fix')
-        uses: stefanzweifel/git-auto-commit-action@778341af668090896ca464160c2def5d1d1a3eb0 # v6.0.1
+        uses: stefanzweifel/git-auto-commit-action@28e16e81777b558cc906c8750092100bbb34c5e3 # v7.0.0
         with:
           branch: ${{ github.event.pull_request.head.ref || github.head_ref || github.ref }}
           commit_message: "[MegaLinter] Apply linters fixes"

.github/workflows/GitFlow_Check-pull-request-source-branch.yml

@@ -59,7 +59,7 @@ jobs:
       # Step 2: If the branch pattern is invalid, add a label and comment to the PR
       - name: Handle invalid branch (label + comment)
         if: failure()
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           github-token: ${{ secrets.GITHUB_TOKEN }}
           script: |
@@ -122,7 +122,7 @@ jobs:
       # Step 3: If the branch pattern is corrected, remove label and comment
       - name: Clean up if branch is corrected
         if: success()
-        uses: actions/github-script@v7
+        uses: actions/github-script@v8
         with:
           github-token: ${{ secrets.GITHUB_TOKEN }}
           script: |

.github/workflows/GitFlow_Make-Release-and-Sync-to-Dev.yml

@@ -121,7 +121,7 @@ jobs:
 
       # Step 4: Create stable GitHub release with all artifacts
       - name: Create release
-        uses: ncipollo/release-action@bcfe5470707e8832e12347755757cec0eb3c22af # v1.18.0
+        uses: ncipollo/release-action@b7eabc95ff50cbeeedec83973935c8f306dfcd0b # v1.20.0
         with:
           tag: v${{ steps.release_version.outputs.NextSemVer }}
           prerelease: false  # This is a stable release

.github/workflows/GitFlow_Nightly-builds.yml

@@ -180,7 +180,7 @@ jobs:
 
       # Step 6: Create GitHub release with all artifacts
       - name: Create release
-        uses: ncipollo/release-action@bcfe5470707e8832e12347755757cec0eb3c22af # v1.18.0
+        uses: ncipollo/release-action@b7eabc95ff50cbeeedec83973935c8f306dfcd0b # v1.20.0
         if: steps.check_prs.outputs.BUILD_NEEDED == 'true'
         with:
           tag: v${{ steps.format_version.outputs.NextSemVer }}

Sources/Winget-AutoUpdate/User-Run.ps1

@@ -1,73 +1,84 @@
 <#
 .SYNOPSIS
-Handle user interaction from shortcuts and show a Toast notification
+    Handles user-initiated WAU update checks via shortcut.
 
 .DESCRIPTION
-Act on shortcut run
+    Provides a user-facing interface to manually trigger WAU update checks.
+    Displays toast notifications for status updates (starting, running,
+    completed, or error). Waits for the scheduled task to complete and
+    shows the result.
 
 .EXAMPLE
-.\user-run.ps1
+    .\User-Run.ps1
 
+.NOTES
+    Triggered by desktop shortcut or Start menu entry.
+    Uses the Winget-AutoUpdate scheduled task.
+    Shows error details from logs\error.txt if update check fails.
 #>
 
+# Check if WAU is currently running
 function Test-WAUisRunning {
-	If (((Get-ScheduledTask -TaskName 'Winget-AutoUpdate').State -eq 'Running') -or ((Get-ScheduledTask -TaskName 'Winget-AutoUpdate-UserContext').State -eq 'Running')) {
-		Return $True
-	}
+    If (((Get-ScheduledTask -TaskName 'Winget-AutoUpdate').State -eq 'Running') -or ((Get-ScheduledTask -TaskName 'Winget-AutoUpdate-UserContext').State -eq 'Running')) {
+        Return $True
+    }
 }
 
 <# MAIN #>
 
-#Get Working Dir
+# Set working directory
 $Script:WorkingDir = $PSScriptRoot
 
-#Load external functions
+# Load required functions
 . $WorkingDir\functions\Get-NotifLocale.ps1
 . $WorkingDir\functions\Start-NotifTask.ps1
 
-#Get Toast Locale function
+# Load notification locale
 Get-NotifLocale
 
-#Set common variables
+# Set common notification parameters
 $OnClickAction = "$WorkingDir\logs\updates.log"
 $Button1Text = $NotifLocale.local.outputs.output[11].message
 
 try {
-	#Check if WAU is currently running
-	if (Test-WAUisRunning) {
-		$Message = $NotifLocale.local.outputs.output[8].message
-		$MessageType = "warning"
-		Start-NotifTask -Message $Message -MessageType $MessageType -Button1Text $Button1Text -Button1Action $OnClickAction -ButtonDismiss -UserRun
-		break
-	}
-	#Run scheduled task
-	Get-ScheduledTask -TaskName "Winget-AutoUpdate" -ErrorAction Stop | Start-ScheduledTask -ErrorAction Stop
-	#Starting check - Send notification
-	$Message = $NotifLocale.local.outputs.output[6].message
-	$MessageType = "info"
-	Start-NotifTask -Message $Message -MessageType $MessageType -Button1Text $Button1Text -Button1Action $OnClickAction -ButtonDismiss -UserRun
-	#Sleep until the task is done
-	While (Test-WAUisRunning) {
-		Start-Sleep 3
-	}
+    # Check if WAU is already running
+    if (Test-WAUisRunning) {
+        $Message = $NotifLocale.local.outputs.output[8].message
+        $MessageType = "warning"
+        Start-NotifTask -Message $Message -MessageType $MessageType -Button1Text $Button1Text -Button1Action $OnClickAction -ButtonDismiss -UserRun
+        break
+    }
 
-	#Test if there was a list_/winget_error
-	if (Test-Path "$WorkingDir\logs\error.txt") {
-		$MessageType = "error"
-		$Critical = Get-Content "$WorkingDir\logs\error.txt" -Raw
-		$Critical = $Critical.Trim()
-		$Critical = $Critical.Substring(0, [Math]::Min($Critical.Length, 50))
-		$Message = "Critical:`n$Critical..."
-	}
-	else {
-		$MessageType = "success"
-		$Message = $NotifLocale.local.outputs.output[9].message
-	}
-	Start-NotifTask -Message $Message -MessageType $MessageType -Button1Text $Button1Text -Button1Action $OnClickAction -ButtonDismiss -UserRun
+    # Start the WAU scheduled task
+    Get-ScheduledTask -TaskName "Winget-AutoUpdate" -ErrorAction Stop | Start-ScheduledTask -ErrorAction Stop
+
+    # Send "starting" notification
+    $Message = $NotifLocale.local.outputs.output[6].message
+    $MessageType = "info"
+    Start-NotifTask -Message $Message -MessageType $MessageType -Button1Text $Button1Text -Button1Action $OnClickAction -ButtonDismiss -UserRun
+
+    # Wait for task completion
+    While (Test-WAUisRunning) {
+        Start-Sleep 3
+    }
+
+    # Check for errors in the update process
+    if (Test-Path "$WorkingDir\logs\error.txt") {
+        $MessageType = "error"
+        $Critical = Get-Content "$WorkingDir\logs\error.txt" -Raw
+        $Critical = $Critical.Trim()
+        $Critical = $Critical.Substring(0, [Math]::Min($Critical.Length, 50))
+        $Message = "Critical:`n$Critical..."
+    }
+    else {
+        $MessageType = "success"
+        $Message = $NotifLocale.local.outputs.output[9].message
+    }
+    Start-NotifTask -Message $Message -MessageType $MessageType -Button1Text $Button1Text -Button1Action $OnClickAction -ButtonDismiss -UserRun
 }
 catch {
-	#Check failed - Just send notification
-	$Message = $NotifLocale.local.outputs.output[7].message
-	$MessageType = "error"
-	Start-NotifTask -Message $Message -MessageType $MessageType -Button1Text $Button1Text -Button1Action $OnClickAction -ButtonDismiss -UserRun
+    # Handle task start failure
+    $Message = $NotifLocale.local.outputs.output[7].message
+    $MessageType = "error"
+    Start-NotifTask -Message $Message -MessageType $MessageType -Button1Text $Button1Text -Button1Action $OnClickAction -ButtonDismiss -UserRun
 }

Sources/Winget-AutoUpdate/WAU-Notify.ps1

@@ -1,24 +1,38 @@
-#Send Notify Script
+<#
+.SYNOPSIS
+    Displays a toast notification to the logged-in user.
 
-#get xml notif config
+.DESCRIPTION
+    Reads notification configuration from an XML file and displays
+    a Windows toast notification using the ToastNotificationManager API.
+    This script is called by a scheduled task when WAU runs in system context.
+
+.NOTES
+    Configuration file: config\notif.xml
+    Launcher ID: Windows.SystemToast.WAU.Notification
+#>
+
+# Get WAU installation path from registry
 $WAUinstalledPath = Get-ItemPropertyValue -Path "HKLM:\SOFTWARE\Romanitho\Winget-AutoUpdate\" -Name InstallLocation
+
+# Load notification XML configuration
 [xml]$NotifConf = Get-Content "$WAUinstalledPath\config\notif.xml" -Encoding UTF8 -ErrorAction SilentlyContinue
 if (!($NotifConf)) {
     break
 }
 
-#Load Assemblies
+# Load Windows notification assemblies
 [Windows.UI.Notifications.ToastNotificationManager, Windows.UI.Notifications, ContentType = WindowsRuntime] | Out-Null
 [Windows.Data.Xml.Dom.XmlDocument, Windows.Data.Xml.Dom.XmlDocument, ContentType = WindowsRuntime] | Out-Null
 
-#Prepare XML
+# Parse notification XML
 $ToastXml = [Windows.Data.Xml.Dom.XmlDocument]::New()
 $ToastXml.LoadXml($NotifConf.OuterXml)
 
-#Specify Launcher App ID
+# Specify toast launcher ID
 $LauncherID = "Windows.SystemToast.WAU.Notification"
 
-#Prepare and Create Toast
+# Create and display the notification
 $ToastMessage = [Windows.UI.Notifications.ToastNotification]::New($ToastXML)
 $ToastMessage.Tag = $NotifConf.toast.tag
 [Windows.UI.Notifications.ToastNotificationManager]::CreateToastNotifier($LauncherID).Show($ToastMessage)

Sources/Winget-AutoUpdate/WAU-Policies.ps1

@@ -1,45 +1,51 @@
 <#
 .SYNOPSIS
-Handle GPO/Polices
+    Applies Group Policy settings to WAU scheduled tasks.
 
 .DESCRIPTION
-Daily update settings from policies
+    Reads WAU configuration from GPO registry keys and updates the
+    Winget-AutoUpdate scheduled task triggers accordingly.
+    Handles daily, bi-daily, weekly, bi-weekly, and monthly schedules,
+    as well as logon triggers and time delays.
+
+.NOTES
+    This script is executed by the WAU-Policies scheduled task.
+    GPO registry path: HKLM:\SOFTWARE\Policies\Romanitho\Winget-AutoUpdate
+    Logs applied settings to: logs\LatestAppliedSettings.txt
 #>
 
-#Import functions
+# Import configuration function
 . "$PSScriptRoot\functions\Get-WAUConfig.ps1"
 
-#Check if GPO Management is detected
+# Check if GPO management is enabled
 $GPOManagementDetected = Get-ItemProperty "HKLM:\SOFTWARE\Policies\Romanitho\Winget-AutoUpdate" -ErrorAction SilentlyContinue
 
 if ($GPOManagementDetected) {
 
-    #Get WAU settings
+    # Load WAU configuration (with GPO overrides)
     $WAUConfig = Get-WAUConfig
 
-    #Log init
+    # Initialize logging
     $GPOLogDirectory = Join-Path -Path $WAUConfig.InstallLocation -ChildPath "logs"
     if (!(Test-Path -Path $GPOLogDirectory)) {
         New-Item -ItemType Directory -Path $GPOLogDirectory -Force | Out-Null
     }
     $GPOLogFile = Join-Path -Path $GPOLogDirectory -ChildPath "LatestAppliedSettings.txt"
     Set-Content -Path $GPOLogFile -Value "###  POLICY CYCLE - $(Get-Date)  ###`n"
 
-    #Get Winget-AutoUpdate scheduled task
+    # Get current scheduled task configuration
     $WAUTask = Get-ScheduledTask -TaskName 'Winget-AutoUpdate' -ErrorAction SilentlyContinue
-
-    #Update 'Winget-AutoUpdate' scheduled task settings
     $currentTriggers = $WAUTask.Triggers
     $configChanged = $false
 
-    #Check if LogOn trigger setting has changed
+    # === Check if LogOn trigger setting has changed ===
     $hasLogonTrigger = $currentTriggers | Where-Object { $_.CimClass.CimClassName -eq "MSFT_TaskLogonTrigger" }
     if (($WAUConfig.WAU_UpdatesAtLogon -eq 1 -and -not $hasLogonTrigger) -or
         ($WAUConfig.WAU_UpdatesAtLogon -ne 1 -and $hasLogonTrigger)) {
         $configChanged = $true
     }
 
-    #Check if schedule type has changed
+    # === Detect current schedule type ===
     $currentIntervalType = "None"
     foreach ($trigger in $currentTriggers) {
         if ($trigger.CimClass.CimClassName -eq "MSFT_TaskDailyTrigger" -and $trigger.DaysInterval -eq 1) {
@@ -72,7 +78,7 @@ if ($GPOManagementDetected) {
         $configChanged = $true
     }
 
-    #Check if delay has changed
+    # === Check if delay has changed ===
     $randomDelay = [TimeSpan]::ParseExact($WAUConfig.WAU_UpdatesTimeDelay, "hh\:mm", $null)
     $timeTrigger = $currentTriggers | Where-Object { $_.CimClass.CimClassName -ne "MSFT_TaskLogonTrigger" } | Select-Object -First 1
     if ($timeTrigger.RandomDelay -match '^PT(?:(\d+)H)?(?:(\d+)M)?$') {
@@ -84,7 +90,7 @@ if ($GPOManagementDetected) {
         $configChanged = $true
     }
 
-    #Check if schedule time has changed
+    # === Check if schedule time has changed ===
     if ($currentIntervalType -ne "None" -and $currentIntervalType -ne "Never") {
         if ($timeTrigger) {
             $currentTime = [DateTime]::Parse($timeTrigger.StartBoundary).ToString("HH:mm:ss")
@@ -94,12 +100,16 @@ if ($GPOManagementDetected) {
         }
     }
 
-    #Only update triggers if configuration has changed
+    # === Update triggers if configuration changed ===
     if ($configChanged) {
         $taskTriggers = @()
+
+        # Add logon trigger if enabled
         if ($WAUConfig.WAU_UpdatesAtLogon -eq 1) {
             $tasktriggers += New-ScheduledTaskTrigger -AtLogOn
         }
+
+        # Add time-based trigger based on interval type
         if ($WAUConfig.WAU_UpdatesInterval -eq "Daily") {
             $tasktriggers += New-ScheduledTaskTrigger -Daily -At $WAUConfig.WAU_UpdatesAtTime -RandomDelay $randomDelay
         }
@@ -116,20 +126,18 @@ if ($GPOManagementDetected) {
             $tasktriggers += New-ScheduledTaskTrigger -Weekly -At $WAUConfig.WAU_UpdatesAtTime -DaysOfWeek 2 -WeeksInterval 4 -RandomDelay $randomDelay
         }
 
-        #If trigger(s) set
+        # Apply new triggers or disable task
         if ($taskTriggers) {
-            #Edit scheduled task
             Set-ScheduledTask -TaskPath $WAUTask.TaskPath -TaskName $WAUTask.TaskName -Trigger $taskTriggers | Out-Null
         }
-        #If not, remove trigger(s)
         else {
-            #Remove by setting past due date
+            # Disable by setting a past due date
             $tasktriggers = New-ScheduledTaskTrigger -Once -At "01/01/1970"
             Set-ScheduledTask -TaskPath $WAUTask.TaskPath -TaskName $WAUTask.TaskName -Trigger $tasktriggers | Out-Null
         }
     }
 
-    #Log latest applied config
+    # Log applied configuration
     Add-Content -Path $GPOLogFile -Value "`nLatest applied settings:"
     $WAUConfig.PSObject.Properties | Where-Object { $_.Name -like "WAU_*" } | Select-Object Name, Value | Out-File -Encoding default -FilePath $GPOLogFile -Append