Enable the Hardened Runtime capability for your application and command line targets.Enable code-signing for all of the executables you distribute.Stapling an app requires macOS 10.12 or later. Building a new app for notarization requires macOS 10.13.6 or later. Notarization requires the Xcode command line tools from Xcode 10 or later. The Gatekeeper "bypass" dialog, accessed by control-clicking on the app (Catalina macOS 10.15.3 dialog) Gatekeeper then places descriptive information in the initial launch dialog to help the user make an informed choice about whether to launch the app.
When the user first installs or runs software, the presence of a ticket (either online or attached to the executable) tells Gatekeeper that Apple notarized the software. If there are no issues, the notary service generates a ticket to staple to the software the notary service also publishes that ticket online where Gatekeeper can find it. The Apple notary service is an automated system that scans software for malicious content, checks for code-signing issues, and returns the results. Notarization is designed by Apple to give users more confidence that Apple developer-signed software has been checked by Apple for malicious components. Notarization is not required for software distributed through the Apple App Store because the App Store submission process already includes equivalent security checks. Beginning in macOS 10.15 (Catalina), all software built after June 1, 2019, and code signed with an Apple developer certificate must be notarized.
4.8 Step 8 - Verify notarization of the application.4.7 Step 7 - Verify notarization of the disk image.4.6 Step 6 - Staple the ticket to the disk image.4.5 Step 5 - Check the notarization process.
0 kommentar(er)
