Code Signing
Windows (Authenticode)
make sign-windows
Uses osslsigncode with the active PFX certificate. The certificate password is passed via a temporary file (not CLI argument) for security:
- Password written to temp file (mode 0600)
osslsigncode sign -pkcs12 <cert.pfx> -readpass <temp-file> ...- Temp file deleted in
finallyblock
macOS (Ad-Hoc)
make sign-darwin
Uses rcodesign sign --code-signature-flags adhoc — no certificate needed. Prevents Gatekeeper from quarantining the binary.
Linux
No code signing for Linux binaries.
Signing Failures
Signing failures are non-fatal — builds continue and produce unsigned binaries. The UI shows a warning but allows download.