osx-sign

Codesign Electron macOS apps

BSD-2-CLAUSE License

Downloads
1.4M
Stars
543
Committers
32
View Code on GitHub View on X
Ecosystems: Electron, macOS

Bot releases are visible (Hide)

osx-sign - v1.1.0 Latest Release

Published by continuous-auth[bot] 7 months ago

1.1.0 (2024-03-20)

Features

  • adding support for specifying per-file requirements as a string (#310) (7f7934f)
osx-sign - v1.0.5

Published by continuous-auth[bot] about 1 year ago

1.0.5 (2023-08-18)

Bug Fixes

  • export SignOptions type (#274) (01bd4c2)
  • only apply preAutoEntitlements to top-level app bundle (#292) (06b32b5)
osx-sign - v0.4.11

Published by sethlu almost 6 years ago

This is a minor patch introducing support for the hardened runtime (introduced in Mojave), with a plist dependency security update.

Added:

  • --hardened-runtime option to pass to codesign enabling hardened runtime (#176).

Security:

  • Fix plist dependency vulnerability (#175).
osx-sign - v0.4.10

Published by sethlu over 6 years ago

Due to a release issue with v0.4.9 on npm (https://github.com/electron-userland/electron-osx-sign/issues/165), please use v0.4.10 instead though there being no activity on the repo.

osx-sign - v0.4.9

Published by sethlu over 6 years ago

This is a minor patch addressing the syntax of --timestamp option passed into codesign that results in unsuccessful attempts to code-sign.

Fixed:

  • Code-sign with timestamp specified should no longer error (issue #163, #164).
osx-sign - v0.4.8

Published by sethlu almost 7 years ago

This is a minor patch that adds support to adjust --strict option passed to codesign on macOS ^10.11.

Added:

Fixed:

osx-sign - v0.4.7

Published by sethlu about 7 years ago

This is a minor patch that introduces passing ignore options as an array (#142) and few other changes.

Changes:

  • electron-osx-sign version is now displayed in the debug log at the beginning of the procedure (#143).
  • tempfile dependency is removed (#146).

Added:

  • opts.ignore now supports an array of previously available ignore options like electron-packager (#142).
osx-sign - v0.4.6

Published by sethlu over 7 years ago

This is a minor patch fixing an issue resulted from using identity hash for codesigning (#135/#136).

osx-sign - v0.4.5

Published by sethlu over 7 years ago

This update deprecates electron-osx-flat due to packages like electron-builder having supported better package building tools. It also introduces codesigning with explicit SHA-1 hashed certs (#132, #134) that resolves a minor issue in codesign encountering segmentation fault as discussed here.

Added:

  • --timestamp=timestamp option to pass timestamp authority server to codesign (#133).
osx-sign - v0.4.4

Published by sethlu over 7 years ago

Minor changes.

osx-sign - v0.4.3

Published by sethlu over 7 years ago

This release introduces minor updates with signing verification that do not affect performance in macOS El Capitan and above and enhance compatibility with earlier system versions.

Fixed:

  • --strict flag only passed in macOS El Capitan and above.
osx-sign - v0.4.2

Published by sethlu almost 8 years ago

Fixed:

  • Validation for --provisioning-profile/opts['provisioning-profile'].
  • No longer display blob header of signed entitlements file.

Updated:

  • Codesign verify with strict flag in El Capitan and later.
  • Deprecated debugerror and various versions of electron-osx-sign:* for logging.

Added:

  • Skip Gatekeeper assess with --no-gatekeeper-assess/opts['gatekeeper-assess'].
osx-sign - v0.4.1

Published by sethlu almost 8 years ago

Minor changes.

osx-sign - v0.4.0

Published by sethlu almost 8 years ago

This release features a partial rewrite of electron-osx-sign where components are broken down in submodules for better code structure. The package now also supports the latest macOS update; while retaining osx as part of the package name, electron-osx-sign supports automated code signing and product building on macOS Sierra.

Added:

Fixed:

Developer notes:

osx-sign - v0.3.2

Published by sethlu about 8 years ago

  • Added: opts.requirements to specify the criteria to be used to evaluate code signature.
osx-sign - v0.4.0-beta4

Published by sethlu over 8 years ago

  • Fixed: Better support for code linting with eslint. (#53)
  • Changed: Renamed all entitlements file to format: entitlements.darwin/mas[.inherit].plist. (#55, #56)
osx-sign - v0.4.0-beta3

Published by sethlu over 8 years ago

  • Fixed: Check availability of entitlements before automation. (#52)
  • Changed: TypeScript updated. (#52)
osx-sign - v0.4.0-beta2

Published by sethlu over 8 years ago

Fixed: Entitlements not updated in automation. (#51)

osx-sign - v0.4.0-beta

Published by sethlu over 8 years ago

This release is very much a complete rewrite of electron-osx-sign so bugs may come as expected. Bluebird promises are introduced for some performance boost with async methods. However, please note that none of the previously available methods are changed, APIs kept the same for best compatibility solutions.

  • Added: signAsync() and flatAsync() introduced, returning Bluebird promises. (#47)
  • Added: preAutoEntitlementAppGroupAsync() introduced to assist recent changes with Electron versions >= 1.1.1 for automation on Info.plist and entitlements file. (https://github.com/electron-userland/electron-packager/issues/371, #44)
  • Added: opts.version flag to specify Electron version. Default to latest Electron version. (#44)
  • Added: opts.pre-auto-entitlements to enable/disable automation on entitlements with preAutoEntitlementAppGroupAsync(). Default to true. (#44)
  • Changed: Now use Bluebird promises for better async methods. (#47)
  • Changed: Now display app entitlements after signing in debug logs. (#43)
  • Fixed: Default entitlements for darwin platform. (#38)
  • Fixed: Verify app bundle after code sign in debug logs. (#48)
osx-sign - v0.3.1

Published by sethlu over 8 years ago

  • Added: opts.keychain to limit and to find identity for signing.
  • Added: opts.ignore of electron-osx-sign to verify whether file to be signed.
  • Changed: Array.indexOf instead of Array.includes for better compatibility.
  • Changed: Binary files, including native node addons are now automatically signed.
  • Changed: node_modules no longer skipped.
  • Changed: Now uses external module debug to display logs and messages, need export DEBUG=electron-osx-sign*.
  • Deprecated: opts.verbose.
Package Rankings
Top 1.65% on Npmjs.org
Badges
Extracted from project README
npm Build Status
Related Projects
NetPad

A cross-platform C# editor and playground.

14 Aug 2021 1,299
G-Desktop-Suite

Google Suite as a desktop app. Made possible with Electron.

04 Oct 2018 1,618
phaser-ce-npm-webpack-typescript-starter-project

Project to get you started with your Phaser-CE (using the npm module) game using Typescript and W...

01 Feb 2017 423
electron-builder

A complete solution to package and build a ready for distribution Electron app with “auto update”...

21 May 2015 13,615