Kate's Fashion Strategy: Co-Designing Tartan After Brand Setbacks
https://youtu.be/nC0VbJUQ0VA
#PrincessKate #RoyalFashion #Strategy #Cefinn #Eponine #JohnstonsOfElgin #ChrisKerrCoat #Tartan #RadicalWeavers #CoDesigning #MeaningfulFashion #BethanHolt
#codesigning
Cần tìm cách code signing phần mềm đơn giản và tiết kiệm nhất? Người dùng Reddit phân vân giữa các dịch vụ code signing trên 200 USD, hỏi có thể tránh được sự nghi ngờ của trình duyệt/máy tính không? Liệu có cần LLC để sử dụng dịch vụ này? #PhầnMềmMiễnPhí #CodeSigning #TiếtKiệmChiPhí #DevOps #PhátTriểnPhầnMềm
https://www.reddit.com/r/SaaS/comments/1qm9pvg/how_to_codesign_in_the_cheapest_possible_way/
Ein abgelaufenes Code-Signing-Zertifikat legt unter macOS Logitech-Tools lahm:
Keine App → keine Maus- & Tastatur-Profile → Produktivität im Eimer.
Der Vorfall zeigt: Zertifikats- & Update-Management sind kritische Infrastruktur.
Security scheitert nicht immer an Hackern, sondern oft an ablaufenden Basics.
#ITSecurity #CodeSigning #SupplyChainSecurity #macOS #Logitech #PKI #SecurityBasics #DevOps
Streamline your development workflow with automated code signing for Windows executables using Azure Trusted Signing, .NET, and GitHub Actions. Enhance security and save time! #CodeSigning #DevOps #windows
Ensure your .NET Core applications are secure with code signing! Protect your work and build trust with users by verifying the integrity and origin of your software. #dotnet #CodeSigning
I've been struggling with #codesigning on #Windows all day today. #Certificate management is incomprehensible.
How do you feel about customer IT departments that demand software to be signed with certs that are not expired, even though the cert was valid at the time of signing the software (which is also proven by timestamp)?
🚀 M Firma Giao Dịch Miễn Phí Mã Nguồn Mở Moga!
SignPath.io cung cấp mã ký công định miễn phí cho dự án mã nguồn mở, đảm bảo tính toàn vẹn phần mềm theo mô hình zero-trust. Hỗ trợ tối ưu công việc phát triển, phát hành và bảo vệ thương hiệu.
#OpenSource #CodeSigning #FreeTool #MãNgônNguồnMở #KýComputerMiễn #PhầnMềmBảoVệ
Here's a Fedi question. Is there a vendor in #Japan for code signing certificates that doesn't charge a month's rent for the service?
(I used to use a cert from the US, but they now insist on shipping a physical key through the broken postal system, and their charges have gone through the roof, it's gotten very silly.)
#codeSigning #software #softwareDevelopment
Someone was looking for inexpensive or at least less expensive Code Signing Certs:
$219 per year from Comoddo and available for individual developers 🙂
Help, I need a code signing certificate that won't bankrupt me.
Three years ago, I paid $100 for a three-year code signing certificate. I've signed all my open-source projects' releases with it. Now that it's renewal time, Certera (SignMyCode.com) wants almost $700 for the same three-year certificate (excluding the mandatory HSM purchase, which I am totally on board with).
I write silly C and PowerShell code, and I timestamp my signatures so that they're perpetually valid. My PowerShell Gallery stuff, as well as binaries of aprs-weather-submit on Windows and macOS, are all signed and hashed (but not notarized by Apple, because that's another $99 a year for something that feels done unless Bob Bruninga's followers are thinking about APRS 2.0).
If I can't find a solution, anything I write or update in the future will have to be released as unsigned unless I half-ass something (like the Notepad++ developer using self-signed certs -- semi-dangerously clever). $100 every three years, fine. $700 every three years, and I'll do it if my three fans click my Buy Me A Coffee link over and over.
Is there any CA out there that will offer open-source, not-for-profit developers like me a chance to get globally-trusted code signing certificates? I don't think SigStore ever took off (sadly), and even if it did, I don't think it's part of the Microsoft Authenticode program.
#CodeSigning #SSL #TLS #certificates #Certera #SoftwareDevelopment #C #PowerShell #PowerShellGallery #AmateurRadio #HamRadio #APRS #APRS-Weather-Submit #GitHub #security #developer #Windows #macOS #Linux #Authenticode #DevSecOps #DevOps
Help! I would like use use AWS CloudHSM to sign a Debian package. We currently have a gpg-based flow using reprepo to create an APT repository.
I cannot for the life of me figure out how to put all the pieces together. All the Debian tooling I can find assumes gpg. I don't see how to put a gpg or gpgme-shaped front end in front of CloudHSM.
But maybe I just don't know which of the available protocols is the correct one. (Is it PKCS11? The compatibility between various smartcard-based gpg use cases and CloudHSM does not seem very clear.)
I would greatly appreciate some pointers on how to put these pieces together. Surely some cryptography or AWS nerd has published a Medium article about this?
Tiens, the latest Notepad++ release is getting flagged & blocked as malware by AVs and EDRs — all because of a cert issue. 🤦
"The Notepad++ code signing certificate issued by DigiCert expired on the May 15, 2025. Unfortunately it seems the project no longer meets the validation criteria, and the publisher name “Notepad++” has been rejected."
👇
https://notepad-plus-plus.org/news/8.8.2-available-in-1-week-without-certificate/
🔗 Reddit thread
⬇️
https://www.reddit.com/r/cybersecurity/comments/1loijul/notepad_882_getting_flagged_as_malware/
🔍 VirusTotal
⬇️
https://www.virustotal.com/gui/file/49852273a3e98ad1266a5bb7cd056e1154cc6d14e7c2a6e308ae95f355ca10cf/community
Is anyone out there still adding actual Digital Signatures in the DSIG table of fonts? Current code signing certificates are supplied only as hardware tokens (USB keys), so no direct access to the private key anymore. Is it worth the bother finding a workaround to sign via the token API? #fonts #dsig #codesigning
ConnectWise is turning the tables on cyber threats by rotating its digital certificates to foil sophisticated phishing attacks. Curious how this bold move could keep your systems safer? Dive into the details.
https://thedefendopsdiaries.com/connectwise-enhances-security-with-certificate-rotation/
#connectwise
#cybersecurity
#codesigning
#phishing
#securityupdates
I've made a small demo script for PGP signing a Python file; this technique could be easily extended to any other scripting language that supports block comments.
https://codeberg.org/Taffer/pygp-sign
Installers could verify the `.py` files in a package, and a runtime could also verify them at import time (hopefully with some key caching involved).
#python #pgp #gpg #codesigning #signatures #SoftwareSuppyChain
I was going to work on my Todoist -> Lunatask importer, but now I'm off on a tangent thinking about a dead-simple way to sign Python code.
The SignServer Team is happy to announce the release of SignServer CE 7.1.1
Featuring NIST approved quantum-safe algorithms ML-DSA and SLH-DSA.
https://github.com/Keyfactor/signserver-ce/releases/tag/v7.1.1
#Keyfactor #SignServer #digitalsignatures #codesigning #pki #postquantum
@SecurityWriter Individual hobbyists who develop games and other programs for Windows often ask the user to bypass SmartScreen because the dev can't afford a commercial code signing certificate. Is that also just like "disable their security software"?
The Double-Edged Sword of Microsoft's Trusted Signing Service
https://thedefendopsdiaries.com/the-double-edged-sword-of-microsofts-trusted-signing-service/
#microsoft
#cybersecurity
#codesigning
#malware
#securitythreats
Client Info
Server: https://mastodon.social
Version: 2025.07
Repository: https://github.com/cyevgeniy/lmst