Will the msix/appx installer automatically trust IV/OV certificates or is an EV certificate required?

[benstevens48]

I am just about to release my packaged app outside the Store and need to purchase a code signing certificate. I have been holding off as long as possible to see if there was any progress on #650, but that has been completely silent.

If no-one can give an update on that, then at least hopefully someone can answer this question. If I sign an msix package with an IV or OV certificate instead of EV, will it still be automatically trusted by the installer, i.e. will the installation screen still say 'Trusted publisher' or whatever the exact message is? Is there actually any difference between IV/OV and EV in this case? And is this likely to change in the future? (I am considering buying a 10-year certificate from SSL.com). Ideally I'd like an official Microsoft answer, but if anyone has experience that would also be useful.

PS I know that in the case of unpackaged apps there is a difference and only EV will guarantee a 'Trusted publisher' message on install.