Signed Windows installer and binaries

[drakkan]

For the past 3 years we have signed our Windows installer and binaries using a code signing certificate purchased in 2021 from @asheroto for $160.

This certificate will expire on November 17, 2024.

Since 2021, the certificate industry has undergone several changes, now code signing certificates seem to require an HSM. This means we are no longer able to export our code signing certificate with its private key and use this in GitHub actions. We would now either need to have our own GitHub agent and hardware token, use a cloud solution or sign locally.

Providing signed Windows installer and binaries can now cost us up to $1,000 for 3 years and also some manual work if we can no longer use GitHub actions.

If you use SFTPGo on Windows and your company requires a signed installer and binaries, please consider supporting the project in some way. This feature may be removed or restricted to commercial users/companies.

If our Windows installer fails the submission checks to Chocolatey and WinGet because it is no longer signed, we may discontinue those packages as well.