ci(windows): code-sign orbit.exe (!1325) · Merge requests · GitLab.org / orbit / GitLab Knowledge Graph

Signs the Windows orbit.exe shipped in orbit-local-windows-x86_64.zip on tag pipelines, matching the macOS signing flow already in place.

The local-cli-code-sign job now depends on the Windows build, signs the binary inside the zip, and publishes the signed archive to the GitLab Release. local-cli-publish no longer pulls the unsigned Windows artifact directly.

Relates to #569 (closed)

Edited May 16, 2026 by Bohdan Parkhomchuk

ci(windows): code-sign orbit.exe

Merge request reports