A. Indeed, that requirement only apply to EV cert (at least for the cert authori... | Hacker News

Hacker News new | past | comments | ask | show | jobs | submit

login

rubymamis 5 months ago | parent | context | favorite | on: Show HN: I completed shipping my desktop app

A. Indeed, that requirement only apply to EV cert (at least for the cert authority I used).

B. That's not always the case with indie developers.

C. Well, it took me. My cert authority was GlobalSign.

> but contrary to the urban legend they are not getting instantly shit-canned by the Defender.

That was not my experience. Try to download an unsigned binary using Edge and see what happens. From what I remember (I'm on macOS, mostly), they are "getting instantly shit-canned".

lazyeye 5 months ago [–]

There is a new approach to doing code-signing called "trusted signing". Havent used it myself so can't comment on the benefits

https://www.advancedinstaller.com/trusted-signing-integratio...

https://learn.microsoft.com/en-us/azure/trusted-signing/over...

Consider applying for YC's Fall 2025 batch! Applications are open till Aug 4
Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact