☞ Github Action to notarize and staple macOS applications or packages.
It does this by:
- storing credentials on keychain (by using
xcrun notarytool store-credentials
) - submitting a built
.app
,.pkg
or.dmg
file to Apple's notary service (by usingxcrun notarytool submit
) - stapling the product (by using
xcrun stapler
).
runs-on: macos-latest
steps:
uses: GuillaumeFalourd/notary-tools@v1
with:
product_path: "path/to/file.app" # or .pkg or .dmg
apple_id: ${{ secrets.APPLE_ID }}
password: ${{ secrets.PASSWORD }}
team_id: ${{ secrets.TEAM_ID }}
# Not mandatory inputs
staple: 'false'
keychain_profile: 'my-keychain-profile'
xcode_path: '/Applications/Xcode_13.3.app'
Field | Mandatory | Observation |
---|---|---|
product_path | YES | Path to the product to notarize. e.g: path/to/product |
apple_id | YES | notarytool --apple-id parameter |
password | YES | notarytool --password parameter |
team_id | YES | notarytool --team-id parameter. |
keychain_profile | NO | notarytool --keychain-profile parameter Default notarization |
staple | NO | Whether to staple the notarized product Default true |
xcode_path | NO | Path of the Xcode version to use Default /Applications/Xcode_13.2.1.app |
☞ If you're interested in contributing to this repository, please follow the guidelines
☞ This repository uses the Apache License 2.0