/gon-config.json

bash tools/osx-notarize.sh $(FULLVERSION)

codesign \

--sign "$SIGN" \

--entitlements tools/osx-entitlements.plist \

--options runtime \

--timestamp \

"$PKGDIR"/bin/node

<?xml version="1.0" encoding="UTF-8"?>

<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">

<plist version="1.0">

<dict>

<key>com.apple.security.cs.allow-jit</key>

<true/>

<key>com.apple.security.cs.allow-unsigned-executable-memory</key>

<true/>

<key>com.apple.security.cs.disable-executable-page-protection</key>

<true/>

<key>com.apple.security.cs.allow-dyld-environment-variables</key>

<true/>

<key>com.apple.security.cs.disable-library-validation</key>

<true/>

</dict>

</plist>

{

"notarize": [{

"path": "node-{{pkgid}}.pkg",

"bundle_id": "org.nodejs.pkg.{{pkgid}}",

"staple": true

}],

"apple_id": {

"username": "{{appleid}}",

"password": "@env:NOTARIZATION_PASSWORD"

}

}

set -e

gon_version="0.2.2"

gon_exe="${HOME}/.gon/gon_${gon_version}"

__dirname="$(CDPATH= cd "$(dirname "${BASH_SOURCE[0]}")" && pwd)"

pkgid="$1"

if [ "X${pkgid}" == "X" ]; then

echo "Usage: $0 <pkgid>"

exit 1

if [ "X$NOTARIZATION_ID" == "X" ]; then

echo "No NOTARIZATION_ID environment var. Skipping notarization."

exit 0

set -x

mkdir -p "${HOME}/.gon/"

if [ ! -f "${gon_exe}" ]; then

curl -sL "https://github.com/mitchellh/gon/releases/download/v${gon_version}/gon_${gon_version}_macos.zip" -o "${gon_exe}.zip"

(cd "${HOME}/.gon/" && rm -f gon && unzip "${gon_exe}.zip" && mv gon "${gon_exe}")

cat tools/osx-gon-config.json.tmpl \

| sed -e "s/{{appleid}}/${NOTARIZATION_ID}/" -e "s/{{pkgid}}/${pkgid}/" \

> gon-config.json

"${gon_exe}" -log-level=info gon-config.json