Skip to content

Digital Signature missing from artifacts of the 3.0.0 release #1120

Closed
#1121
Closed
Digital Signature missing from artifacts of the 3.0.0 release#1120
#1121
Assignees
gep13
Labels
5 - ReleasedThe issue has been resolved, and released to the public for consumption.BugIssues where something has happened which was not expected or intended.ClickUp - BacklogUsed when syncing issues between GitHub and Clickup.Priority - HighRepresent high priority tickets - things that must be addressed soon.
Milestone
3.0.1
@gep13

Description

@gep13
gep13
opened on Mar 23, 2026

Checklist

  • I confirm there are no unresolved issues reported on the Chocolatey Status page.
  • I have verified this is the correct repository for opening this issue.
  • I have verified no other issues exist related to my problem.
  • I have verified this is not an issue for a specific package.
  • I have verified this issue is not security related.
  • I confirm I am using official, and not unofficial, or modified, Chocolatey products.

What You Are Seeing?

When inspecting the Digital Signature of the Chocolatey GUI v3.0.0 release, there is currently no signature listed:

Image

For reference, a screenshot comparing Chocolatey GUI v2.1.1:

Image

What is Expected?

Artifacts should be signed before release.

How Did You Get This To Happen?

  1. Installed Chocolatey GUI v2.1.1
  2. Navigated to C:\Program Files (x86)\ChocolateyGUI and right-clicked the ChocolateyGUI.exe, then chose Properties and Digital Signatures.
  3. Ran choco upgrade chocolatey.extension -y to upgrade to the latest Chocolatey packages. This raised Chocolatey GUI to v3.0.0.
  4. Navigated to C:\Program Files (x86)\ChocolateyGUI and right-clicked the ChocolateyGUI.exe, then chose Properties and Digital Signatures.

User Story

As a Chocolatey user.
I want the Chocolatey packages I use digitally signed by Chocolatey Software
to ensure that the artifacts that I am using are legitimate.

System Details

  • Operating System: Windows 11
  • Windows PowerShell version: 5.1
  • Chocolatey CLI Version: 2.7.0
  • Chocolatey Licensed Extension version: 8.0.0
  • Chocolatey License type: BusinessTrial
  • Terminal/Emulator: Windows PowerShell

Installed Packages

chocolatey v2.7.0
chocolatey.extension v8.0.0
chocolatey-agent v4.0.0
chocolateygui v3.0.0
chocolateygui.extension v3.0.0

Output Log

No logs.

Additional Context

Zendesk Ticket

Acceptance Criteria

  • Each artifact has been digitally signed.

Related Issues

┆Issue is synchronized with this Clickup task by Unito

Metadata

Metadata

Assignees

Labels

5 - ReleasedThe issue has been resolved, and released to the public for consumption.BugIssues where something has happened which was not expected or intended.ClickUp - BacklogUsed when syncing issues between GitHub and Clickup.Priority - HighRepresent high priority tickets - things that must be addressed soon.

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions