profile

Aaronontheweb

The Latest from Aaronontheweb: Signing NuGet Packages Using Azure DevOps and Workload Identity Federation

Published 12 months ago • 1 min read

Signing NuGet Packages Using Azure DevOps and Workload Identity Federation

Published on April 14, 2025 in

12 minutes to read

Azure released a major update to some of their VM images last week and it’s caused a number of problems for me:

  1. mono support was removed from ubuntu-latest, which caused all of our FAKE v4.0 builds to no longer work for Akka.NET and several of our other mature projects;
  2. SignService, our workhorse for Authenticode signing all Petabridge NuGet packages for the past seven years, stopped working suddenly on the Azure App Service we’ve been using.

I have no idea what Microsoft did to kill this service off, but my guess is they finally stopped supporting the ancient version of .NET Framework this was running on starting on April 11th or so:

We had owed a customer an update today and the race was on to find a replacement for SignClient - quickly. We quickly settled upon dotnet/sign - and then the race was on to figure out how to solve the infernal quagmire of Azure Entra / AAD permissions hell in order to access our Azure Key Vault where our signing certificate is stored.

This post explains how to do that.

Click here to read the full article.

Read more...

Aaronontheweb

.NET, Open Source, Startups, and Outer Space

I write about .NET, open source software, the Microsoft ecosystem, my adventures with startups, and outer space.

Read more from Aaronontheweb

Software 2.0: Code is Cheap, Good Taste is Not Last week I shipped a feature that would have taken me ~4 days in about 45 minutes: 8 parallel solutions explored, 1 verified, reviewed, deployed. That's not vibe coding. It's a process. I'm calling it Software 2.0. Software 1.0 is software you specify. Software 2.0 is software you verify. I just published a long essay formalizing how I've been using LLMs to ship production software - not as a novelty, but as a disciplined engineering process...

2 months ago • 1 min read

Why Your Software Sucks: Inheritance Published on January 26, 2026 in 7 minutes to read “I have a great idea: let’s create a five-layer deep inheritance hierarchy with a universal base class that every domain object inherits from! That way, when requirements inevitably change, we’ll only need to touch… everything.” This is episode two of my Why Your Software Sucks video series, and today we’re talking about inheritance - specifically, how deep inheritance hierarchies turn your codebase into...

3 months ago • 1 min read

Why Am I Paying $40,000 for the Birth of My Child? Published on November 30, 2025 My third child arrives in a week. The cost? $40,000. Out of pocket. Cash. Not because something went wrong medically. That's just the price of admission for a self-employed entrepreneur who wants to grow a family while running a small business in America. $25,680 in annual premiums + $14,300 deductible = the privilege of bringing a new taxpayer into this world. I wrote about this because Michael Green's viral...

4 months ago • 1 min read