I have a scheduled task that runs “winget upgrade --all” every morning on all computers. I have noticed that this is being blocked by Comodo “Auto-Containment”. If I manually run this command in an elevated Command Prompt or PowerShell, I get the green border around the window indicating that Comodo believes it is malicious behavior and nothing get updated.
Any thoughts on how to whitelist the winget app to keep this from happening?
Hi @marmfield,
Sorry for the delayed response. Can you please export and share the logs through a private message, so that we can check and suggest you in writing Ignored rule under containment.
Kind Regards,
PremJK
@PremJkumar It appears I lack the ability to private message you. What are the steps you want me to replicate and extract the logs for this?
Hi @marmfield,
Please check this help guide to view “Containment Logs” from “Logs”, select “Export” and share the logs with us.
https://help.comodo.com/topic-399-1-904-11829-containment-logs.html
Kind Regards,
PremJK