Changes:
- Add 30 minute timeout for notarization (fail fast)
- Add SKIP_NOTARIZE=true env var to skip notarization entirely
- Don't fail build if notarization fails (app still code-signed)
- Add NOTARIZE_FAIL_ON_ERROR=true to fail build on notarization error
- Add forceCodeSigning, strictVerify, type=distribution to mac config
- Disable electron-builder built-in notarize (using custom script)
This prevents CI from hanging forever waiting for Apple's notarization
service and reduces wasted GitHub Actions minutes.
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
- Add entitlements.mac.plist for hardened runtime
- Add notarize.js post-sign hook for Apple notarization
- Update package.json with signing config and @electron/notarize dep
- Update GitHub Actions workflow with signing secrets
Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
