Weird Cert on Windows Installer #648
Comments
|
Thank you for opening your first issue in this project! Engagement like this is essential for open source projects! 🤗 |
|
What certificate do you see, and which certification vendors would you prefer be used instead? |
|
For example, are there other open source projects that you use on your Windows installation that use signed installers? If so, which certification authorities do they use? |
|
You are using a developer cert from Apple. This seems to be self signed. |
|
I think this is a duplicate of #202 which tracks code signing on Windows (and Mac - this one was done). @mbektas what is blocking us here? Is there something we could do to unblock this, i.e. is this something we need to take up to the Jupyter EC to get a certificate paid for, or is this a software problem to be solved? |
|
You will definitely need a Code Signing Cert for Windows. |
|
@krassowski NumFocus was going to purchase a Windows signing certificate and pass the information to me last time we discussed. We haven't synced on that for a very long time. |
|
Any news on this one? |
|
I am working with NumFOCUS to get a signing certificate purchased. |
|
Resolving as a duplicate of #202. |
Description
The cert, which is used to sign the window installer can not be verified!
Please do not sign this installer like this.
Either use a cert from a well known vendor, which roots are widely distributed
Or do not sign at all!
A signature like this produces a lot more questions as it is able to answer.
Reproduce
Just download the Windows Installer.
Powershell:
Get-AuthenticodeSignature -FilePath "JupyterLab-Setup-Windows.exe"
The text was updated successfully, but these errors were encountered: