Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

build(macos): Sign macOS binaries #2401

Merged
merged 17 commits into from
Mar 19, 2025
Merged

build(macos): Sign macOS binaries #2401

merged 17 commits into from
Mar 19, 2025

Conversation

szokeasaurusrex
Copy link
Member

@szokeasaurusrex szokeasaurusrex commented Feb 20, 2025
edited
Loading

Closes #1882

@szokeasaurusrex szokeasaurusrex requested a review from BYK February 20, 2025 10:07
@szokeasaurusrex szokeasaurusrex marked this pull request as ready for review February 20, 2025 10:21
@szokeasaurusrex szokeasaurusrex force-pushed the szokeasaurusrex/sign-macos branch from 6e1650f to 4549c90 Compare February 20, 2025 10:27
@szokeasaurusrex szokeasaurusrex force-pushed the szokeasaurusrex/sign-macos branch from 4549c90 to e33d3ac Compare February 20, 2025 14:13
BYK
BYK approved these changes Feb 21, 2025
View reviewed changes
Copy link
Member

@BYK BYK left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I think this looks pretty great!

It might be worth adding a smoke test after signing and notarization that just runs the binary and makes sure it doesn't exit with a non-zero code.

mdtro
mdtro reviewed Mar 4, 2025
View reviewed changes
@szokeasaurusrex szokeasaurusrex requested review from mdtro and BYK March 19, 2025 14:50
BYK
BYK approved these changes Mar 19, 2025
View reviewed changes
Copy link
Member

@BYK BYK left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM!

.github/workflows/build.yml
APPLE_API_KEY_PATH: /tmp/apple_key.json

steps:
- name: Checkout repository
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Don't think you need a check out as you're not using anything from the repo?

I see that we use entitlements from the repo. Not sure how long this step takes but if it's longer than a few seconds we can upload entitlements file along with the artifacts and skip this step.

Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think it takes that long – the waiting for notarization I think takes quite a bit longer

@szokeasaurusrex szokeasaurusrex merged commit 4d4a47e into master Mar 19, 2025
44 checks passed
@szokeasaurusrex szokeasaurusrex deleted the szokeasaurusrex/sign-macos branch March 19, 2025 16:09
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@BYK BYK BYK approved these changes

@mdtro mdtro Awaiting requested review from mdtro

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

sentry-cli for macOS doesn't seem to be signed properly
3 participants
@szokeasaurusrex @BYK @mdtro