Any chance of getting the binaries signed for the term-size package? #2
Description
Hey @sindresorhus, we're dealing with the macOS notarization drama for the Node.js .pkg downloadables. We have to codesign binaries and packagesign the .pkg files (we've always done these) and now we have to notarize the .pkg files and staple the notarization in order for them to get past the new Gatekeeper on macOS Catalina. Otherwise, users get an error when trying to install.
Node bundles npm which bundles boxen which bundles term-size which bundles this executable in vendor/macos. When we notarize the Node.js .pkg files we get warnings from Apple about this executable being unsigned. Apparently next month those warnings are going to turn in to fatal errors.
Before we explore alternatives I wanted to check whether there was any chance you could start codesigning the binary when you vendor it in to term-size? It requires an Apple Developer membership to get a certificate and some hoop-jumping but can be scripted. "no" is a reasonable response IMO but I thought we ought to check.
Ref: nodejs/node#31459
Ref: https://gist.github.com/rvagg/d9befda67accfe1355f7cf6da399980b