* This basically means that the script is validate *TWICE*, using two
completely independent signatures, before it is allowed to run, which
should add another mitigation layer against TOCTOU (which we already
friggin' mitigated against anyway) and other potential vectors of
attack.
* Also remove -DisableFirstRunCustomize option and the associated cookie
prompt monitoring, which the latest version of Fido no longer requires.
* Also update WDK version for signtool and flesh out PKI error messages.
* Rather useless, since elevated apps are neither accepted by Microsoft nor
will they run by default when sideloaded. But, hey, I can has apps!
* Also update sign and sed scripts
* "[Grumble] Stupid Microsoft... [Grumble] Couldn't push updated PKI algorithms
to Windows platforms... [Grumble] Even if their lives depended on it..."
* default is enabled (=> add --without-freedos to disable)
* also update the release process as a result
* also update version to rufus next
* also fixed FreeDOS embedded files lost when RC is edited in Visual Studio