Bot releases are hidden (Show)
Published by sethlu almost 6 years ago
This is a minor patch introducing support for the hardened runtime (introduced in Mojave), with a plist
dependency security update.
Added:
--hardened-runtime
option to pass to codesign
enabling hardened runtime (#176).Security:
plist
dependency vulnerability (#175).Published by sethlu over 6 years ago
Due to a release issue with v0.4.9 on npm (https://github.com/electron-userland/electron-osx-sign/issues/165), please use v0.4.10 instead though there being no activity on the repo.
Published by sethlu over 6 years ago
This is a minor patch addressing the syntax of --timestamp
option passed into codesign
that results in unsuccessful attempts to code-sign.
Fixed:
Published by sethlu almost 7 years ago
This is a minor patch that adds support to adjust --strict
option passed to codesign
on macOS ^10.11.
Added:
--strict-verify
, --strict-verify=options
, --no-strict-verify
options to pass to codesign
(issue https://github.com/electron-userland/electron-osx-sign/issues/161).Fixed:
com.apple.security.application-groups
in entitlements is string (https://github.com/electron-userland/electron-osx-sign/issues/161).Published by sethlu about 7 years ago
This is a minor patch that introduces passing ignore options as an array (#142) and few other changes.
Changes:
electron-osx-sign
version is now displayed in the debug log at the beginning of the procedure (#143).tempfile
dependency is removed (#146).Added:
opts.ignore
now supports an array of previously available ignore options like electron-packager
(#142).Published by sethlu over 7 years ago
This is a minor patch fixing an issue resulted from using identity hash for codesigning (#135/#136).
Published by sethlu over 7 years ago
This update deprecates electron-osx-flat
due to packages like electron-builder
having supported better package building tools. It also introduces codesigning with explicit SHA-1 hashed certs (#132, #134) that resolves a minor issue in codesign
encountering segmentation fault as discussed here.
Added:
--timestamp=timestamp
option to pass timestamp authority server to codesign
(#133).Published by sethlu over 7 years ago
Minor changes.
Published by sethlu over 7 years ago
This release introduces minor updates with signing verification that do not affect performance in macOS El Capitan and above and enhance compatibility with earlier system versions.
Fixed:
--strict
flag only passed in macOS El Capitan and above.Published by sethlu almost 8 years ago
Fixed:
--provisioning-profile
/opts['provisioning-profile']
.Updated:
debugerror
and various versions of electron-osx-sign:*
for logging.Added:
--no-gatekeeper-assess
/opts['gatekeeper-assess']
.Published by sethlu almost 8 years ago
Minor changes.
Published by sethlu almost 8 years ago
This release features a partial rewrite of electron-osx-sign
where components are broken down in submodules for better code structure. The package now also supports the latest macOS update; while retaining osx
as part of the package name, electron-osx-sign
supports automated code signing and product building on macOS Sierra.
Added:
codesign
verification similar to Gatekeeper check (https://github.com/electron-userland/electron-osx-sign/commit/eed27ddc2211ff75601954cf3a7937ecf187cb71).--pre-embed-provisioning-profile
/--no-pre-embed-provisioning-profile
(https://github.com/electron-userland/electron-osx-sign/commit/dfad463bd7acfea14b637c61735da2d2be2e51b2).opts.scripts
option for productbuild
(https://github.com/electron-userland/electron-osx-sign/commit/b1644aa3fc0c92402b89042a91d6ec28d082ed44).darwin
builds (https://github.com/electron-userland/electron-osx-sign/commit/6bae78e486dbb73db0f87ed88ffca7dae4b2a3b6).opts.requirements
option for codesign
(https://github.com/electron-userland/electron-osx-sign/commit/a01e8a448d10c493b81d5b0f578a6855cabbf46e).Fixed:
opts.ignore
revised for code signing (https://github.com/electron-userland/electron-osx-sign/commit/1bd17ca40bc16e5241ba587be1419b2938f5ad9f).run-series
(https://github.com/electron-userland/electron-osx-sign/commit/16732d639d8d3cef423ec7722c56d9bc6666a16b).opts.ignore
validation logic (https://github.com/electron-userland/electron-osx-sign/commit/1e8a8da13a2c39e858ae2697c37df84984a114ad).Developer notes:
Published by sethlu about 8 years ago
opts.requirements
to specify the criteria to be used to evaluate code signature.Published by sethlu over 8 years ago
eslint
. (#53)entitlements.darwin/mas[.inherit].plist
. (#55, #56)Published by sethlu over 8 years ago
Published by sethlu over 8 years ago
Fixed: Entitlements not updated in automation. (#51)
Published by sethlu over 8 years ago
This release is very much a complete rewrite of electron-osx-sign
so bugs may come as expected. Bluebird promises are introduced for some performance boost with async methods. However, please note that none of the previously available methods are changed, APIs kept the same for best compatibility solutions.
signAsync()
and flatAsync()
introduced, returning Bluebird promises. (#47)preAutoEntitlementAppGroupAsync()
introduced to assist recent changes with Electron versions >= 1.1.1 for automation on Info.plist
and entitlements file. (https://github.com/electron-userland/electron-packager/issues/371, #44)opts.version
flag to specify Electron version. Default to latest Electron version. (#44)opts.pre-auto-entitlements
to enable/disable automation on entitlements with preAutoEntitlementAppGroupAsync()
. Default to true
. (#44)darwin
platform. (#38)Published by sethlu over 8 years ago
opts.keychain
to limit and to find identity for signing.opts.ignore
of electron-osx-sign
to verify whether file to be signed.Array.indexOf
instead of Array.includes
for better compatibility.node_modules
no longer skipped.debug
to display logs and messages, need export DEBUG=electron-osx-sign*
.opts.verbose
.Published by sethlu over 8 years ago
darwin
builds with entitlements..cstemp
files before code-signing app bundle.security
.test/work
from the previous unfinished task..plist
default entitlement files to .entitlements
following Apple doc: Enabling App Sandbox.helper-path
, helper-executable-path
, helper-eh-path
, helper-eh-executable-path
, helper-np-path
and helper-np-executable-path
.Published by sethlu over 8 years ago
.cstemp
files before code-signing app bundle.security
..plist
default entitlement files to .entitlements
following Apple doc: Enabling App Sandbox.helper-path
, helper-executable-path
, helper-eh-path
, helper-eh-executable-path
, helper-np-path
and helper-np-executable-path
.