dyzulk/trustlab-docs
1
0
Fork 0
mirror of https://github.com/dyzulk/trustlab-docs.git synced 2026-01-26 05:25:38 +07:00
Code Issues Packages Projects Releases Wiki Activity
Files
6c5b0c53aefd14b7df666d06af9f4d25caed4da0
trustlab-docs/pages/guide/integrations/code-signing.mdx
dyzulk 6c5b0c53ae feat: initial commit of trustlab-docs
2026-01-08 15:03:32 +07:00

24 lines
883 B
Plaintext
Raw Blame History

# Code Signing
Code signing ensures that scripts and executables have not been tampered with and originate from a trusted source (Internal Developer).
## Supported Formats
- **Microsoft Authenticode** (Executables, PowerShell scripts)
- **Java Archive** (JAR files)
## Signing with SignTool (Windows)
1. **Install SignTool**: Included in the Windows SDK.
2. **Download PFX**: Get your Code Signing certificate in `.pfx` format.
3. **Run Command**:
```powershell
signtool sign /f "MyCert.pfx" /p "password" /tr http://timestamp.digicert.com /td sha256 /fd sha256 .\MyApp.exe
```
- `/tr`: Timestamp Server (Recommended so the signature is valid even after cert expiry).
- `/fd`: File Digest algorithm (Use SHA256).
## Verifying Signature
Right-click the `.exe` file -> **Properties** -> **Digital Signatures** tab. You should see "TrustLab Internal CA" in the certificate path.
Reference in New Issue View Git Blame Copy Permalink