Octopus.Upgrader.exe is not signed

security

(Blair Paine) #1

Hi,

We’ve found that the executable Octopus.Upgrader.exe which is delivered as part of a tentacle upgrade to a client server is not digitally signed.

You can verify this by using the PowerShell cmdlet Get-AuthenticodeSignature

Please can this executable be signed as your other executables and installer are? As it does not have an authenticode signature it is being blocked by security software we use and tentacle upgrades delivered by the Octopus server result in a failure.

Many thanks,
Blair.


(Michael Noonan) #3

Hi Blair,

Thanks for getting in touch! You’re right, we don’t sign that executable, but we should be. I’ve raised this issue and it should ship in the next couple of days.

Hope that helps!
Mike