That Microsoft has restored WireGuard's ability to release updates is good, sure.

@neil Actually, here's another (related) question. In the case of an open code signing arrangement, where you are able to install your own code signing certificate authorities instead of only being able to trust the one(s) that the operating system vendor provides, how do you prevent malicious actors from installing code signing CAs that you didn't want installed, and therefore able to run untrusted (by you) code?

It strikes me that neither scheme is without its problems.

@tony Drivers' inability to correctly read road signs has been a problem since time immemorial.

Although round here there actually aren't any part-time bus lanes

Though it can't be an inability to read a bus symbol on a (circular) blue sign because people quite happily drive through bus gates and get fined for it...