-
-
Notifications
You must be signed in to change notification settings - Fork 1.7k
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
How to Ignore 3rd party exe while doing code sign #6304
Comments
Please update us, its quite critical. |
Looks like you should be able to set
electron-builder/packages/app-builder-lib/src/macPackager.ts Lines 230 to 239 in 8ebfc96
Haven't tried this myself though |
|
@mmaietta Thanks for your kind support , In my use case i am generating the build for Windows. |
Ah, my apologies, not sure how I misread that. Well, looking at You'll probably need to override windows signing and use your own custom signing mechanism/process via:
|
@mmaietta ; Thank a lot for your kind response. |
This is the signing arg compilation electron-builder/packages/app-builder-lib/src/codeSign/windowsCodeSign.ts Lines 188 to 208 in 7f933d0
Signature verification cmd: electron-builder/packages/electron-updater/src/windowsExecutableCodeSignatureVerifier.ts Line 42 in 7f933d0
|
@mmaietta ; I have written the custom script to sign only my exe; verify the code is it proper. const signtool = ""C:/Program Files (x86)/Windows Kits/10/bin/10.0.19041.0/x64/signtool.exe""
|
I didn't (and won't) test that but it seems a bit complex, I see it simplified to:
In the script, I noticed that |
For anyone still looking how to exclude some files from Windows signing while not using custom sign tool here is a custom script. const path = require('path')
const { doSign } = require('app-builder-lib/out/codeSign/windowsCodeSign')
/**
* @type {import("electron-builder").CustomWindowsSign} sign
*/
module.exports = async function sign(config, packager) {
// Do not sign if no certificate is provided.
if (!config.cscInfo) {
return
}
const targetPath = config.path
const ext = path.extname(targetPath)
const baseName = path.basename(targetPath, ext)
// Do not sign elavate file, because that prompts virus warning.
if (targetPath.endsWith('elevate.exe')) {
return
}
// Only sign our own DLL files.
if (ext === '.dll' && !baseName.toLowerCase().startsWith('mylib')) {
return
}
await doSign(config, packager)
} |
Is this still relevant? If so, what is blocking it? Is there anything you can do to help move it forward? This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. |
@minht11 Can you please explain how to connect that script to the build process? |
@serg06 in your electron-builder config
|
We are creating a electron app using the electron zoom sdk, when we bundle the app using electron builder its sign all the dependency exe files. Because of which zoom sdk is not working properly.
I have tried manual sign -> electron builder not allowing to do auto update, throwing the signature miss match error
Basically,
I want to know, is there a way to skip folder sign?
What is the format which electron builder will use for code sign?, so that i can do manual sign and release the build.
The text was updated successfully, but these errors were encountered: