Stengo
commented
10 months ago The issue should be resolved in release v1.2 🙂 https://github.com/Stengo/DeskPad/releases/tag/v1.2
Closed frederikb closed 10 months ago
Stengo
commented
10 months ago The issue should be resolved in release v1.2 🙂 https://github.com/Stengo/DeskPad/releases/tag/v1.2
Upon downloading and attempting to run the DeskPad application on macOS Sonoma, I encountered a rejection by the Gatekeeper.
To proceed, you need to perform the usual steps to add an exception in order to allow the app to run. I delved deeper into the application's signature status using Apparency and here's what I found:
Signed by: The signature does not match any Gatekeeper policy. The DeskPad.app is signed by "Apple Development: Bastian Andelefski (DQ9U5WWMJR)," a certificate issued by Apple to a third-party developer for the purposes of signing apps during development and testing phase. Unfortunately, the signature does not align with any established Gatekeeper policy which results in a default prohibition of code execution on macOS.
Gatekeeper Status: The app is flagged as "Rejected." This status is assigned because the app is signed with a certificate not recognized as trusted by Gatekeeper (or possibly even by macOS). This could arise if the component was signed with a third-party certificate, or an Apple-issued certificate but not of the Developer ID variety.
Notarization Status: No notarization was detected for DeskPad.app. This situation presents a hurdle as the exceptions required for allowing code execution will not be met. Specifically, even if the app was signed with an Apple-issued Developer ID certificate it would not run without being notarized.
This issue became apparent while I was preparing a Homebrew cask for DeskPad, where the audit step failed due to the absence of a signature and notarization for the app.
I understand that acquiring a Developer ID and notarizing the app involves costs, and might be a significant ask for a free open source application. I just wanted to open up this issue to highlight the topic, because you did make the effort to sign it with a signature for v1.1.
Additional resourced about code signing and notarization.