@Lex Li, you mentioned Microsoft Trusted Signing: I’m not familiar with it yet, but I will look into it. Does Trusted Signing fully replace the need for purchasing an EV certificate from a CA, or does it rely on an underlying certificate issued by a partner CA? If anyone has experience with Trusted Signing in CI/CD pipelines, especially for .NET assemblies, VSTO add-ins, or installer signing, I’d be interested in hearing how it compares.