Is it possible to sign app for macos on workflow

[wasphin]

Hi, when tring to introduce mpv to brew cask, it requires the app to be signed, is there any problem to sign the apps build form workflow?

macOS on ARM requires software to be signed. Please contact the upstream developer to let them know they should sign and notarize their software.

[Akemi]

it's ad-hoc signed with a pseudo identify, to make it at least runable on ARM. https://github.com/mpv-player/mpv/blob/master/TOOLS/osxbundle.py#L89-L90

if you need it properly singed with a certificate from an authorised developer so macOS can properly identify the origin (notarised) and run it without additional approvals, then we would need a payed Apple developer account subscription and use that in our pipeline.

mpv doesn't have any funds so we can't pay for a subscription. also those are nightly builds and i don't see a need to sign them in the state they are right now.