Steve Yegge 3c786f2333 feat: add Windows code signing infrastructure (bd-14v0) ...

Implements Authenticode signing for Windows binaries to reduce AV false positives.

Changes:
- Add scripts/sign-windows.sh for osslsigncode-based signing
- Update .goreleaser.yml with post-build signing hook
- Update release.yml to install osslsigncode and pass secrets
- Update docs/ANTIVIRUS.md with signing verification instructions
- Update scripts/README.md with signing script documentation

The signing is gracefully degraded - releases continue without signing
if the certificate secrets are not configured.

Required secrets for signing:
- WINDOWS_SIGNING_CERT_PFX_BASE64: base64-encoded PFX certificate
- WINDOWS_SIGNING_CERT_PASSWORD: certificate password

🤖 Generated with [Claude Code](https://claude.com/claude-code)

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

2025-12-24 00:07:16 -08:00

..

images

…

workflows

feat: add Windows code signing infrastructure (bd-14v0)

2025-12-24 00:07:16 -08:00

copilot-instructions.md

Fix GH#366: Encourage descriptions when creating issues

2025-11-23 14:14:40 -08:00

dependabot.yml

feat: Add Dependabot config and README badges

2025-10-23 20:06:40 -07:00