Osmose
commented
5 years ago Or is the goal to test and verify the signed add-on before releasing it?
That's the goal. QA needs to verify the exact artifact we're sending to users. Unfortunately testing with the staging key doesn't work on Release, so if we want reliable release-level testing, we need to sign for release.
Note that signing is only done when someone pushes a tag of the form v1.0.0 so there is some level of intentionality behind it already.
This will allow us to do release builds of the add-on and send them to QA for testing before we actually upload them.