tdbhacks
commented
1 month ago Apologies for the late reply. This sounds similar to another recently opened issue, where we would need to allow certs to be imported even if they don't match an existing KMS key: https://github.com/GoogleCloudPlatform/kms-integrations/issues/34
Signing Windows MSIX files requires that the intermediate certificates are available to validate. Adding them all under the
certspath in the yml doesn't add the to the signing verification.Note that my issue has been fixed using a workaround by Conveyor. I decided to report it since I might face the issue again in the future if I need to sign a raw MSI or MSIX file.