Add signature verification step to release-test workflow

Extract and display Authenticode certificate details from signed
Windows binaries using jsign extract + openssl.

Co-authored-by: Isaac

Author: pietern

.github/workflows/release-test.yml

@@ -81,6 +81,16 @@ jobs:
         env:
           GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
 
+      - name: Verify Windows binary signatures
+        run: |
+          for exe in dist/windows_*/databricks.exe; do
+            echo "=== $exe ==="
+            java -jar "$JSIGN_JAR" extract --format PEM "$exe"
+            openssl pkcs7 -in "${exe}.p7" -inform PEM -print_certs -text -noout
+            rm "${exe}.p7"
+            echo
+          done
+
       - name: Upload artifacts
         uses: actions/upload-artifact@bbbca2ddaa5d8feaa63e36b76fdaad77386f024f # v7.0.0
         with: