Many of the issues can be caught before submitting your PR, if you follow these steps:
- Validate the manifest file by running
winget validate <path-to-the-manifest>
- Install the manifest on your local machine. This will verify the Sha256 Hash and check whether the application is able to install silently (without any human interaction) or not. You can do this by running:
winget install --manifest <path-to-the-manifest>
orwinget install -m <path-to-the-manifest>
Once those steps pass, here are some troubleshooting tips:
Manifest validation errors indicate that there is a problem with the manifest file. Many of the issues can be caught before submitting your PR, when you validate the manifests before submission: winget validate <path-to-the-manifest>
For documentation on the manifest specification, please see the manifest schema
Here are some common mistakes not discovered by the winget validation.
- Check the publisher folder and application name folder.
- Check for typos in the filename.
Both of them should match the PackageIdentifier
of the manifest.
Important
PackageIdentifier
is case-sensitive and so the path of the manifest and filename.
PackageIdentifier: <publisher>.<name>
Manifest Path: <first-letter-of-the-publisher>\<publisher>\<name>\<version>
Filenames:
- For singleton manifest:
<publisher>.<name>.yaml
- For multi-manifests
- Installer:
<PackageIdentifier>.installer.yaml
- Locale:
<PackageIdentifier>.locale.<language-code>.yaml
- Version:
<PackageIdentifier>.yaml
- Installer:
Binary validation errors indicate that the installer failed static analysis.
Here are some common causes for the Binary-Validation-Error label:
- The Sha256 HASH in the manifest does not match the HASH of the installer. Run
winget hash <installer>
to generate the hash. - The URL is not valid. Make sure the URL to the installer is publicly available and valid.
- The installer has been identified as malware. If the installer is detected as malware, you can submit the installer to the defender team for analysis as a potential false positive.
Windows Defender SmartScreen validation errors indicate that the URL you provided has a bad reputation.
Internal-Errors indicate there was an error hit by the service. Microsoft will investigate these and pursue a fix. For a list of known issues, see our repository issues