☞ Github Action to notarize and staple macOS applications or packages.
It does this by:
- storing credentials on keychain (by using
xcrun notarytool store-credentials) - submitting a built
.app,.pkgor.dmgfile to Apple's notary service (by usingxcrun notarytool submit) - stapling the product (by using
xcrun stapler).
runs-on: macos-latest
steps:
uses: GuillaumeFalourd/notary-tools@v1
with:
product_path: "path/to/file.app" # or .pkg or .dmg
apple_id: ${{ secrets.APPLE_ID }}
password: ${{ secrets.PASSWORD }}
team_id: ${{ secrets.TEAM_ID }}
# Not mandatory inputs
staple: 'false'
keychain_profile: 'my-keychain-profile'
xcode_path: '/Applications/Xcode_13.3.app'| Field | Mandatory | Observation |
|---|---|---|
| product_path | YES | Path to the product to notarize. e.g: path/to/product |
| apple_id | YES | notarytool --apple-id parameter |
| password | YES | notarytool --password parameter |
| team_id | YES | notarytool --team-id parameter. |
| keychain_profile | NO | notarytool --keychain-profile parameter Default notarization |
| staple | NO | Whether to staple the notarized product Default true |
| xcode_path | NO | Path of the Xcode version to use Default /Applications/Xcode_13.2.1.app |
☞ If you're interested in contributing to this repository, please follow the guidelines
☞ This repository uses the Apache License 2.0