Recently got a Mac Mini for local CI purposes (together with Forgejo Actions), took a broad look at the ecosystem and decided to just roll with "build on host" instead. Setting up signing/notarization just looked like an insurmountably task together with isolating it from the host, even with agents. At least the macOS builds are really fast now and the signing/notarization just ~200 lines of Bash...
reply> the signing/notarization just ~200 lines of Bash
reply200 lines?! That’s two orders of magnitude too many. What exactly are you doing that you need so such code for signing and notarisation?
Could you share your recipe please ? I’m interested
reply