Open ll78912 opened 3 months ago
Specify hardened-runtime only when signing .app:
relic sign -k devid -f foo-darwin-amd64 --hardened-runtime
https://github.com/sassoftware/relic/blob/master/doc/macos.md#signing-macos-binaries
thanks!
@RangoW : I have tried to sign .app file directly but it is not working. Should we first sign all the executables within the .app file?
Currently DMG files are signed without hardened-runtime which may cause apple notarization process to fail. Can this flag be added to DMG signing logic?