Security of signing

Hello,

I have a question about the signing mechanism for validating the downloaded update package. According to the help page (https://wyday.com/wybuild/help/update-signing.php), the public key for validating the signature is part of the client.wyc file, right? So, what prevents a potential hacker to just replace the public key?

Thanks,Jan

If the hacker controls the computer there's nothing stopping them from replacing anything on the computer including the bios, necessary system files, etc.

The update signing prevent malicious updates from being installed. It doesn't prevent hackers from compromising your or your customer's computers from other methods and altering the computer.