Hacksore
commented
4 months ago FWIW it could just be a false positive but if @colinlienard ever wants to code sign windows builds I've done a bunch of deep dives into the process using https://ssl.com.
Code signing action: https://github.com/overlayeddev/overlayed/blob/main/.github/workflows/release.yaml#L102-L148
My antivirus (Trend Micro) detect a malware in the latest release setup file GitLight_0.17.5_x64-setup.exe The msi file (GitLight_0.17.5_x64_en-US.msi) seems ok.
You can check the virus total report here : https://www.virustotal.com/gui/file/e65826b6f1ed75cf30c97c655d3e262339b4feb02ac91c3fe6cc505a8accd002