winapp-signing
Pass
Audited by Gen Agent Trust Hub on Apr 17, 2026
Risk Level: SAFE
Full Analysis
- [Administrative Privilege Usage]: The skill documents that administrative access is necessary for the winapp cert install command. This is required to add a development certificate to the system's Trusted Root Certification Authorities store, which is a standard step for local testing of signed Windows applications.
- [Default Password Configuration]: The documentation identifies that generated certificates use 'password' as a default PFX password. It provides guidance on how to override this default using the --password flag, which is a recommended practice for managing sensitive development assets.
- [Well-known Service Integration]: The signing instructions include an option to use a timestamping service from a well-known provider. Utilizing a timestamp server is a standard procedure in code signing to ensure the long-term validity of the application's digital signature.
Audit Metadata