[seb314]

apparently the issue is that you could modify the script, keeping the script-launching binary unchanged and signed?

did not try/verify though

[UncleMeat]

How are you planning on modifying the script?

The network can't do it if it is downloaded over TLS. A malicious host can already ship evil scripts. Malware on the local machine can already do worse that edit a script.

[lordlimecat]

The installer is code-signed, and requests root privileges, right?

>Malware on the local machine can already do worse that edit a script.

Malware on the local machine may not have root rights. You're basically arguing that privilege escalation isnt a real threat.