Obi-Dann
commented
3 years ago Hi, I think it won't work because electron-builder is actually using a forked modified version of Squirrel.Windows https://github.com/electron-userland/electron-builder-binaries/issues/1
It looks like electron-builder's Squirrel.Windows is built from https://github.com/develar/Squirrel.Windows
So, in order to get it working, https://github.com/develar/Squirrel.Windows needs to be forked, the fix should be pulled from upstream and these binaries need to be rebuilt. Alternatively, electron-builder needs to be change to get it working with the "normal" non-hacked version of Squirrel.Windows. TBH, it really sucks that electron-builder uses a forked modified version of Squirrel.Windows without saying it anywhere specifically
nick-invision
Squirrel.Windows-1.9.0 and older has a DLL hijacking vulnerability that was fixed here and published as 1.9.1. I understand that electron-builder-squirrel-windows is deprecated as of 1.9.0, but this security fix should at least be resolved in case people have no other reason to migrate off of squirrel.
Files copied directly from Squirrel.Windows.
This will also resolve issue #33