wh81752
commented
3 years ago Btw, workaround is this one:
$> xattr -d com.apple.quarantine asciidoctor-web-pdf
Open wh81752 opened 3 years ago
wh81752
commented
3 years ago Btw, workaround is this one:
$> xattr -d com.apple.quarantine asciidoctor-web-pdf
ggrossetie
commented
3 years ago Btw, workaround is this one:
I didn't know this command, nice trick! You can also authorize it in System Preferences > Security & Privacy, under the General tab. Click "Open Anyway" to confirm your intent to open or install the app.
Reference: https://support.apple.com/en-us/HT202491
"asciidoctor-web-pdf” cannot be opened because the developer cannot be verified.
The reason is that the binary is not notarized/signed. In order to notarize/sign an application, Apple requires an active subscription to their Apple Developer Program (99$/year).
In order to publish the Asciidoctor browser extension on Safari, the Asciidoctor community has decided to subscribe to the Apple Developer Program. So, in theory, it should be possible to sign the application.
Since the release is automated, we will need to integrate the signing process using GitHub Actions. Apparently, it's possible, I found two articles:
Feel free to integrate the signing process in https://github.com/Mogztter/asciidoctor-web-pdf/blob/master/.github/workflows/release.yml. I can follow-up and by adding the secrets and testing.
ggrossetie
commented
3 years ago In the meantime, we can also improve the documentation to state how to workaround this warning message.
ggrossetie
commented
3 years ago @wh81752 I will probably give it a try this weekend unless you are already busy working on it?
wh81752
commented
3 years ago @Mogztter - please go ahead. Otherwise I will give it a try upcoming week. Right bit busy.
ggrossetie
commented
3 years ago Unfortunately it does not work because binaries created by pkg cannot be signed using codesign: https://github.com/vercel/pkg/issues/66
It's also a bit tricky since we include Chromium and apparently we also need to sign Chromium binaries... sigh
As mentioned in a comment, it's possible to download and extract the archive using curl + unzip. In this case, macOS won't verify the binary:
curl -sL https://github.com/Mogztter/asciidoctor-web-pdf/releases/download/v1.0.0-alpha.12/asciidoctor-web-pdf-mac-v1.0.0-alpha.12.zip -o asciidoctor-web-pdf.zip
unzip -qq asciidoctor-web-pdf.zip -d asciidoctor-web-pdf-v1.0.0-alpha.12
rm asciidoctor-web-pdf.zip./asciidoctor-web-pdf-v1.0.0-alpha.12/asciidoctor-web-pdf --help@Mogztter - Too bad.
Perhaps it's just fine to update the docu how to get going on MacOS:
com.apple.quarantineon all files ; or curl + unzip; orRemarks on curl+zip:
unzip -qq asciidoctor-web-pdf.zip is fine by now (thanks to #460) :-)Remark on Chromium:
There has been a security update recently on Chromium, see https://www.debian.org/security/2021/dsa-4911. How would users update their installation in respect to such a security update? My idea is to exclude Chromium from the package and rather install during a post-install action (perhaps by a simple script).
After downloading https://github.com/Mogztter/asciidoctor-web-pdf/releases/download/v1.0.0-alpha.12/asciidoctor-web-pdf-mac-v1.0.0-alpha.12.zip on MacOS Catalina (10.15.7) and extracting into local folder I'm not able to run it. I'm getting
“asciidoctor-web-pdf” cannot be opened because the developer cannot be verified.