Skip to content

Make macOS signing/DMG steps conditional on secret availability#137

Open
eddoww wants to merge 1 commit into
AstoniaCommunity:mainfrom
eddoww:feature/optional-macos-signing
Open

Make macOS signing/DMG steps conditional on secret availability#137
eddoww wants to merge 1 commit into
AstoniaCommunity:mainfrom
eddoww:feature/optional-macos-signing

Conversation

@eddoww

@eddoww eddoww commented Apr 2, 2026
edited
Loading

Copy link
Copy Markdown
Member

Release workflow currently fails on forks because the macOS signing steps blow up when Apple certificates aren't configured.

This adds a check step early in the macOS build job that tests if APPLE_CERT_P12 exists and sets an output flag. All signing/notarization/DMG steps are gated behind that flag. The DMG download in create-release uses continue-on-error and the checksum handles the missing file gracefully.

On upstream nothing changes. On forks without Apple certs, signing is skipped and the release is created without a DMG.

@eddoww eddoww force-pushed the feature/optional-macos-signing branch 3 times, most recently from 8033683 to 75da1f2 Compare April 2, 2026 14:28
@eddoww
Make macOS signing/DMG steps conditional on APPLE_CERT_P12 secret
5b51bcc 
Gate all signing, notarization, and DMG creation steps behind a
step output that checks secrets.APPLE_CERT_P12 availability. Forks
without Apple signing credentials can run the release workflow
successfully - the macOS build still produces binaries, just no
signed DMG.
@eddoww eddoww force-pushed the feature/optional-macos-signing branch from 75da1f2 to 5b51bcc Compare April 2, 2026 14:31
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

1 participant

@eddoww