Mozilla's code signing process has evolved significantly over 20 years, progressing from manual GPG signatures to an automated system handling thousands of daily signatures through their Autograph service. The evolution includes improvements in security, automation, and cross-platform support, moving from Windows-only signing to a sophisticated cloud-based infrastructure with Hardware Security Modules.
https://hearsum.ca/posts/history-of-code-signing-at-mozilla/