I was looking at doing a SwiftPM .artifactbundle
SE-0305 and realized I'm not completely clear how this should work in the current macOS world of notarization and stabling of binaries.
-
Notarizing macOS software before distribution says:
You can notarize several different types of software deliverables, including:
- macOS apps
- Non-app bundles, such as kernel extensions
- Disk images (UDIF format)
- Flat installer packages
-
But, as I read SE-0305, it seems SwiftPM can only handle a
.zip
file to contain the binaries for all the possible platforms.
So it seems like macOS can't notarize a binary macOS binary that isn't a bundle (like protoc
in the evolution proposal), but a .dmg
isn't supported by SwiftPM and even if it was, it wouldn't be that useful on non Apple platforms.
So am I reading things wrong? How would one make an .artifactbundle
that doesn't need a developer to have already allowed running of unsigned things to work?