Hi Git Team, We're part of the Microsoft team that owns Smart App Control (https://learn.microsoft.com/en-us/windows/apps/develop/smart-app-control/overview), which requires applications to sign all of their executable files (exe, dll, msi, tmp, and a few other file formats). We found during internal testing and/or from user feedback that your app, git-bash.exe, is not correctly signed. Block Event: FileName: \Device\HarddiskVolume7\Program Files\Git\git-bash.exe Calling Process: \Device\HarddiskVolume7\Windows\explorer.exe Sha256 Hash: 42F2E685686FB6356A195709AF912C7B9D424466BD7C6D69258AADA5E80AC3C2 Signing your app is in your best interest, as it positively identifies you as the developer of your application to your customers installing and running your apps, and they can rest assured that your app hasn't been tampered with. For the purposes of Smart App Control, all app binaries including .exe, .dll, .tmp files, and uninstallers all need to be signed. For more information on code signing, please refer to: https://learn.microsoft.com/en-us/windows/apps/develop/smart-app-control/code-signing-for-smart-app-control Please confirm if the unsigned file(s) will be signed in this or a future build, or if there is no intent to rectify the unsigned executable file(s). Thanks, Rolland Swing | Azure E&P Program Manager Enterprise & Security - Platform Integrity Team mailto:v-roswing@xxxxxxxxxxxxx
