SoftFever 48acf4f13b ci(windows): tolerate untrusted root in signature verification for test cert ...

signtool verify /pa exits non-zero when the certificate chain terminates in
an untrusted root, which is always the case for the SignPath self-signed test
certificate. Add an -AllowUntrustedRoot switch to verify-authenticode.ps1 that
accepts a signed-but-untrusted-root result (while still failing on unsigned or
otherwise invalid files), and pass it from the workflow during test-signing.

Remove the switch once signing-policy-slug moves to release-signing with a
production CA-issued certificate, so release builds enforce a fully trusted chain.

2026-05-30 01:52:51 +08:00

..

actions/apt-install-deps

Build and run a test in CI (#10835)

2025-10-29 20:56:06 +08:00

ISSUE_TEMPLATE

Fix bug template: Wrap nightly build link in bug template (#13337)

2026-04-24 09:09:00 -03:00

workflows

ci(windows): tolerate untrusted root in signature verification for test cert

2026-05-30 01:52:51 +08:00

dependabot.yml

add dependabot (#7752)

2025-01-07 22:58:29 +08:00

FUNDING.yml

Update FUNDING.yml

2024-07-09 21:06:06 +08:00

pull_request_template.md

Bug and PR Template enhancements (#13297)

2026-04-24 14:22:26 +08:00