NuGet Warning NU3020
Scenario 1
Package 'SamplePackage v1.0.0' from source 'https://contoso.com/index.json': The timestamp does not have a signing certificate.
Issue
The timestamp on the package signature does not contain a signing certificate.
Solution
Please try to re-sign and timestamp the package. If the problem persists, contact the Timestamp Authority to discover the source of the problem.
Scenario 2
Package 'SamplePackage v1.0.0' from source 'https://contoso.com/index.json': The primary signature's timestamp does not have a signing certificate.
Issue
The timestamp on the package signature does not contain a signing certificate.
Solution
Please request the package author to re-sign the package using the nuget sign
command as described in NuGet docs. If the problem persists, request the package author to contact the Timestamp Authority to discover the source of the problem.
Note
When running the nuget verify -signatures
command, NU3020 is raised as an error. Otherwise, NU3020 is raised as a warning.