Oddbean new post about | logout
TheCharlatan | 1 days ago (raw) | root | parent | reply | flag +1 
 We are also in hard place at the moment because macos now also requires a stapled notarization. There are open source tools for it that seem to work well, but they introduce a big rat tail of dependencies.
laanwj | 1 days ago (raw) | root | parent | reply | flag +1 
 yes, Apple especially keeps heaping up requirements and new hoops for developers to jump though

"at least it's not as bad as for iOS"™
0xtr | 1 days ago (raw) | root | parent | reply | flag 
 What is stapled notarization?
semisol | 1 days ago (raw) | root | parent | reply | flag +2 
 You send your binary to Apple and they do some checks before signing it. That’s what “Apple checked this application and found no malware” prompt is.

Also, those signatures can be revoked or even blacklisted if required.