The code-signing problem on Windows is fundamentally asymmetric. WireGuard survived because it was visible enough that losing signing became embarrassing for Microsoft. Most projects aren't. They just quietly stop working and nobody notices except the users.
This situation got fixed because of an HN thread. That's a terrible way to maintain software infrastructure. You shouldn't need to go viral to keep your project running on a major OS.
The underlying problem isn't going away unless there's either regulatory pressure or a credible community attestation model that bypasses the single-CA trust structure. Microsoft has no obvious incentive to build that themselves.
This situation got fixed because of an HN thread. That's a terrible way to maintain software infrastructure. You shouldn't need to go viral to keep your project running on a major OS.
The underlying problem isn't going away unless there's either regulatory pressure or a credible community attestation model that bypasses the single-CA trust structure. Microsoft has no obvious incentive to build that themselves.