We fixed an issue in the Cloud certificate upload that allowed files with invalid extensions to be submitted.
With this update:
-
Both UI and backend restrict uploads to
.pfx
or.p12
only. -
File extension and type are validated; other formats are rejected with a clear message listing allowed types.
-
This improves security and UX by preventing incorrect inputs in the signing flow.