ah interesting, can you provide the hashes for those binaries and the version?

give me a bit, I need to confirm that we aren't doing something weird when we deploy new package versions.

Sure! Official packages provided through osquery.io or the deb/rpm repositories are always signed

Ok yeah, confirmed y'all are signing, this was something else. Thanks for your help ++