kicad-developers team mailing list archive

[Mark Roszko <mark.roszko@xxxxxxxxx>]

It's hard to say, Microsoft keeps quiet on most details. EV
code-signing certs supposedly are given "good" reputation immediately.
EV certs cost $$$ and require a legal business registration
(+identification to prove it to the CA).

But that's the theory because they also say:
"Other factors are considered when generating reputation and
determining product experiences and EV-signed programs will be closely
monitored over time."


So they can shitlist your EV cert anyway for things as simple as
"Windows has detected the installer did not complete" messages that
are kind of typical on bad setups :/ They do base things on on the
telemetry windows gathers.


Other than that's it's not difficult or anything to sign the builds
with a different certificate since its just a single command line once
the cert is in the server's certificate store.

So its mostly the money and risk factor (that it doesn't work).