electron-installer-codesign
Advanced tools
Sign your electron apps on OSX.
# For use in npm scripts
npm i electron-installer-codesign --save-dev
# For use from cli
npm i electron-installer-codesign -g
To obtain a signing identity, join the Mac Developer Program. More info is available in the Mac Developer documentation.
Usage: electron-installer-codesign <path/to/.app> <Identity>
Sign your electron apps on OSX.
Usage:
electron-installer-codesign ./FooBar-darwin-x64/FooBar.app "Developer ID Application: Lucas Hrabovsky"
Args:
<appPath> Path to your `.app` directory.
<identity> Keychain query of a Code Signing Identity obtained from Apple.
Options:
--debug Enable debug messages.
--overwrite Overwrite any existing DMG.
-h --help Show this screen.
--version Show version.
var codesign = require('electron-installer-codesign')
codesign(opts, function done (err, filePaths) { })
Required
appPath - String
The .app directory generated by electron-packager.
identity - String
SHA-1 signature or query (e.g. Developer ID Application <your_name>) of a Code Signing Identity obtained from Apple.
err - Error
Contains errors if any.
filePaths Array
Paths successfully signed and verified.
Apache 2.0
FAQs
Sign your electron apps on OSX.
We found that electron-installer-codesign demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 30 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Socket CEO Feross Aboukhadijeh discusses open source security challenges, including zero-day attacks and supply chain risks, on the Cyber Security Council podcast.
Security News
Research
Socket researchers uncover how threat actors weaponize Out-of-Band Application Security Testing (OAST) techniques across the npm, PyPI, and RubyGems ecosystems to exfiltrate sensitive data.
Security News
Research
A malicious npm campaign is targeting Ethereum developers by impersonating Hardhat plugins and the Nomic Foundation, stealing sensitive data like private keys.