[GH-ISSUE #25] Skipping an executable #20

New issue

Closed

opened 2026-02-25 21:30:28 +03:00 by kerem · 4 comments

kerem commented 2026-02-25 21:30:28 +03:00

Owner

Copy link

Originally created by @gsmeets on GitHub (Aug 8, 2016).
Original GitHub issue: https://github.com/brutaldev/StrongNameSigner/issues/25

Originally assigned to: @brutaldev on GitHub.

Is there a way to skip one particular executable from being signed?
I have phantomjs inside of a vsix project, but it keeps spitting out 150+ warnings over it every time I compile.

Originally created by @gsmeets on GitHub (Aug 8, 2016). Original GitHub issue: https://github.com/brutaldev/StrongNameSigner/issues/25 Originally assigned to: @brutaldev on GitHub. Is there a way to skip one particular executable from being signed? I have phantomjs inside of a vsix project, but it keeps spitting out 150+ warnings over it every time I compile.

kerem 2026-02-25 21:30:28 +03:00

• closed this issue
• added the
  question
  label

kerem commented 2026-02-25 21:30:29 +03:00

Author

Owner

Copy link

@brutaldev commented on GitHub (Aug 9, 2016):

Unfortunately there is no mechanism to exclude specific files or patterns from the signing process. As a workaround, I can suggest just being more strict about which files/directories you want to include instead.

<!-- gh-comment-id:238467944 --> @brutaldev commented on GitHub (Aug 9, 2016): Unfortunately there is no mechanism to exclude specific files or patterns from the signing process. As a workaround, I can suggest just being more strict about which files/directories you want to include instead.

kerem commented 2026-02-25 21:30:29 +03:00

Author

Owner

Copy link

@gsmeets commented on GitHub (Aug 9, 2016):

well, I need to bundle that executable in my vsix. So I don't have a choice really I think. How does it determine which files to convert? Can I perhaps add the executable to a solution folder and copy it in a later build step or something similar? Right now it's just included as a file in one of my projects.

<!-- gh-comment-id:238527892 --> @gsmeets commented on GitHub (Aug 9, 2016): well, I need to bundle that executable in my vsix. So I don't have a choice really I think. How does it determine which files to convert? Can I perhaps add the executable to a solution folder and copy it in a later build step or something similar? Right now it's just included as a file in one of my projects.

kerem commented 2026-02-25 21:30:29 +03:00

Author

Owner

Copy link

@brutaldev commented on GitHub (Aug 9, 2016):

Bundling it in your VSIX installer doesn't mean it needs to get signed. The PhantomJS executable is not a .NET assembly so trying to sign it will fail.

By default all assembly types (exe and dll) will be included recursively in the signing process. However, you can specify in great detail which files you actually want to sign which is recommended for speed.

If you take a look at the readme you'll see that you can use wild patterns in the path you are including, you can also separate multiple paths with pipe | character. You should try and include only the directories with assemblies that actually need to be signed as well as their dependencies.

Let's assume you use a directory called "release" where all the files are that you are signing right now. If you don't have any executables that need signing, you can just include dll's by using the pattern .\release\*\*.dll. That will effectively ignore the PhantomJS executable and any others as well. Ideally you should be more specific though and only sign assemblies that need to be signed. You can provide just these directories such as .\release\*\someframework\v4.*\lib|.\release\anotherframework\net40 separating multiple locations with pipes and making liberal use of wild cards.

I'm not sure what your process is, whether you're using the API, console application or the UI, but at some point you need to point to a directory location you want to sign. You can be quite flexible about what to include and you don't need to just point at a giant directory of files which is also inefficient. Because you can be explicit about what to sign, it's unlikely you will ever need a way to exclude files.

<!-- gh-comment-id:238623710 --> @brutaldev commented on GitHub (Aug 9, 2016): Bundling it in your VSIX installer doesn't mean it needs to get signed. The PhantomJS executable is not a .NET assembly so trying to sign it will fail. By default all assembly types (exe and dll) will be included recursively in the signing process. However, you can specify in great detail which files you actually want to sign which is recommended for speed. If you take a look at the [readme](https://github.com/brutaldev/StrongNameSigner/blob/master/README.md) you'll see that you can use wild patterns in the path you are including, you can also separate multiple paths with pipe `|` character. You should try and include only the directories with assemblies that actually need to be signed as well as their [dependencies](https://github.com/brutaldev/StrongNameSigner/blob/master/README.md#dealing-with-dependencies). Let's assume you use a directory called "release" where all the files are that you are signing right now. If you don't have any executables that need signing, you can just include dll's by using the pattern `.\release\*\*.dll`. That will effectively ignore the PhantomJS executable and any others as well. Ideally you should be more specific though and only sign assemblies that need to be signed. You can provide just these directories such as `.\release\*\someframework\v4.*\lib|.\release\anotherframework\net40` separating multiple locations with pipes and making liberal use of wild cards. I'm not sure what your process is, whether you're using the API, console application or the UI, but at some point you need to point to a directory location you want to sign. You can be quite flexible about what to include and you don't need to just point at a giant directory of files which is also inefficient. Because you can be explicit about what to sign, it's unlikely you will ever need a way to exclude files.

kerem commented 2026-02-25 21:30:29 +03:00

Author

Owner

Copy link

@gsmeets commented on GitHub (Aug 9, 2016):

Ah okay. Thanks. I just followed the how to and copied in a line in my post build command. Didn't realize that line actually had a file glob pattern in it. :)

<!-- gh-comment-id:238633037 --> @gsmeets commented on GitHub (Aug 9, 2016): Ah okay. Thanks. I just followed the how to and copied in a line in my post build command. Didn't realize that line actually had a file glob pattern in it. :)

kerem referenced this issue 2026-02-25 21:30:40 +03:00

[PR #20] [CLOSED] Added support for wildcard package names. #92

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

v3.6.5

v3.6.4

v3.6.3

v3.6.2

v3.6.1

v3.6.0

v3.5.1

v3.5.0

v3.4.0

v3.3.3

v3.3.2

v3.3.1

v3.3.0

v3.2.1

v3.2.0

v3.1.1

v3.1.0

v2.9.1

v2.9.0

2.7.1

2.7.0

2.6.0

2.4.0

v2.3.0

v2.2.0

v2.1.4

v2.1.3

v2.1.2

v2.1.0

v2.0.0

v1.8.0

v1.7.0

v1.6.1

v1.5.1-2

v1.5.0

v1.5.1

v1.4.9

v1.4.8

v1.4.7

v1.4.6

1.4.5

1.4.4

1.4.3

1.4.2

1.4.1

1.4

v1.3.0.0

1.2

Labels

Clear labels   

bug

  

duplicate

  

duplicate

  

enhancement

  

invalid

  

pull-request

Mirrored from GitHub Pull Request

  

question

  

wontfix

No labels

bug

duplicate

duplicate

enhancement

invalid

pull-request

question

wontfix

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/StrongNameSigner#20

No description provided.