This is related to Gobby/Infinoted.
I installed the server on Freedombox Apps OK.
Per directions, went to github to download the client at:
This page links to the download with an insecure linkify.me.
I end up at: /gobby/gobby/releases
And downloaded: gobby-0.6.0-x64.exe
Github says releases are signed with fingerprint 7288 34F3 B8D5 52ED 25CC 1B1F B1C7 1544 BF1D 92C7
The output I got was:
PS C:\Users\XXX\Desktop> get-filehash gobby-0.6.0-x64.exe
Algorithm Hash Path
SHA256 D8B3C71D166E95DA3E13AB920DC63CD0BE7CE4D4F43E4567ABD8646CBDC72128 C:\Users\XXX\Desktop\gob…
PS C:\Users\XXX\Desktop> get-AuthenticodeSignature gobby-0.6.0-x64.exe
Directory: C:\Users\XXX\Desktop
SignerCertificate Status Path
NotSigned gobby-0.6.0-x64.exe
Can any one confirm if the download is safe? Perhaps I am attempting to verify it incorrectly as a novice, or perhaps this is cause for concern.