We also make custom tasks for BIOS, firmware, and drivers. Like Pete_F said, you’ll want to suspend BitLocker and clear any BIOS passwords and suspend any security software products you may be running before your actually run these types of updates. Afterwards you’ll need corresponding tasks to re-enable all the issues that you suspended.
The good news is that once you do the heavy lifting the first time to create a baseline, subsequent updates are usually a freeze as you can re-use the same overall baseline, but just insert the new BIOS update in a task in the middle of it.
Take special care to suppress any interactive prompts. Clearing the BIOS password, for example, should help to eliminate prompting.