I successfully added a certificate to the whitelist. It works for .exe files. However, when I sign a .ps1 file with the same certificate, McAfee continues to block it. Is there a known limitation, or something I'm doing wrong?
I've tried launching it from File Explorer and from a Command Line.
Are you running the script from a networkdrive?
We experienced the same when running a signed powershell from a networkdrive. Apperently the deny is based on the script being on a non-trusted network path. not on the signer with which the script is signed.
According to McAfee support this is "works as designed". So fix would be adding the network path as trusted directory.