Processor CodeSignatureVerifier
github-actions edited this page Dec 6, 2022
·
9 revisions
NOTE: This page is automatically generated by GitHub Actions when a new release is tagged.
Updates to the information on this page should be submitted as pull requests to the AutoPkg repository. Processors are located here.
Verifies application bundle or installer package signature.
Requires version 0.3.1.
-
DISABLE_CODE_SIGNATURE_VERIFICATION:
- required: False
- description: Skip this Processor step altogether. Typically this would be invoked using AutoPkg's defaults or via '--key' CLI options at the time of the run, rather than being defined explicitly within a recipe.
-
input_path:
- required: True
- description: File path to an application bundle (.app) or installer package (.pkg or .mpkg). Can point to a path inside a .dmg which will be mounted.
-
expected_authority_names:
- required: False
- description: An array of strings defining a list of expected certificate authority names. Complete list of the certificate name chain is required and it needs to be in the correct order. These can be determined by running: pkgutil --check-signature <path_to_pkg>
-
requirement:
- required: False
- description: A requirement string to pass to codesign. This should always be set to the original designated requirement of the application and can be determined by running: $ codesign --display -r- <path_to_app>
-
deep_verification:
- required: False
- description: Boolean value to specify that any nested code content will be recursively verified as to its full content. Note that this option is ignored if the current system version is less than 10.9.
-
strict_verification:
- required: False
- description: Boolean value to control the strictness of signature validation. If not defined, codesign defaults are used. Note that this option is ignored if the current system version is less than 10.11.
-
codesign_additional_arguments:
- required: False
- description: Array of additional argument strings to pass to codesign.
- Introduction
- Getting Started
- Overview of Using AutoPkg
- FAQ
- More Resources
- Removing AutoPkg
-
AutoPkg Reference
- Preferences
- Recipes
- Processors
-
Processor Reference
- AppDmgVersioner
- AppPkgCreator
- BrewCaskInfoProvider
- CodeSignatureVerifier
- Copier
- CURLDownloader
- CURLTextSearcher
- DeprecationWarning
- DmgCreator
- DmgMounter
- EndOfCheckPhase
- FileCreator
- FileFinder
- FileMover
- FlatPkgPacker
- FlatPkgUnpacker
- GitHubReleasesInfoProvider
- Installer
- InstallFromDMG
- MunkiCatalogBuilder
- MunkiImporter
- MunkiInfoCreator
- MunkiInstallsItemsCreator
- MunkiOptionalReceiptEditor
- MunkiPkginfoMerger
- MunkiSetDefaultCatalog
- PackageRequired
- PathDeleter
- PkgCopier
- PkgCreator
- PkgExtractor
- PkgInfoCreator
- PkgPayloadUnpacker
- PkgRootCreator
- PlistEditor
- PlistReader
- SparkleUpdateInfoProvider
- StopProcessingIf
- Symlinker
- Unarchiver
- URLDownloader
- URLDownloaderPython
- URLGetter
- URLTextSearcher
- Versioner
- Development