Description: I have WDAC (Windows Defender Application Control) setup and during installation it fails because .dll files used at location: C:\Windows\assembly\tmp\XXXXXX\ during installation are blocked because they are not signed by a publisher. Below are examples of files WDAC complains about but I didn't go through each file (so there are additional files that need to be signed not including the below) examples: C:\Windows\assembly\tmp\XXXXXX\cli_basetypes.dll C:\Windows\assembly\tmp\XXXXXX\cli_ure.dll C:\Windows\assembly\tmp\XXXXXX\cli_uretypes.dll C:\Windows\assembly\tmp\XXXXXX\cli_uretypes.dll C:\Windows\assembly\tmp\XXXXXX\\policy.1.0.cli_basetypes.dll etc. Note: XXXXXX changes on a per install basis, I think LibreOffice being installed: LibreOffice_7.6.6_Win_x86-64 (non-enthusiast version) Windows 11 23H2 Thank you Actual Results: Install fails Expected Results: Install succeeds Reproducible: Always User Profile Reset: Yes Additional Info: [Information automatically included from LibreOffice] Locale: en-US Module: StartModule [Information guessed from browser] OS: Windows (All) OS is 64bit: no
Yes, cli_* assemblies are not signed, unlike the DLLs in the program files. Christian: is there a reason why we don't sign them?