I think signing software is futile anyway since it now behaves like malware that exfiltrates user data anyway. An installer that verifies its file hash has the same level of protection.

Software development licences are a huge scam doing more for DRM than for actually real security.