Closed pjrobertson closed 2 years ago
OK, so this builds fine and verifies fine:
/Downloads ❯❯❯ spctl --assess --verbose --type open --context context:primary-signature "Quicksilver 1.6.1.dmg"
Quicksilver 1.6.1.dmg: accepted
source=Notarized Developer ID
/Quicksilver ❯❯❯ spctl --assess --verbose --type open --context context:primary-signature "Quicksilver.app"
Quicksilver.app: accepted
source=Notarized Developer ID
Edit: and of course, the main thing is this signed Quicksilver.app can load non-signed plugins.
Since this is such a quick and easy change, and removes the need for us to re-download and re-build all other plugins, here's my proposal:
In my mind, this + the Donation PR should be all we need to get 2.0 out. There are a few outstanding plugins, but I'm not that concerned - they're mostly ones that don't work now anyway.
Allows loading un-signed plugins
Test pull request to have GH Actions build a signed copy to debug.
Related to https://github.com/quicksilver/Quicksilver/issues/2634#issuecomment-1059642928