Skip to content

FIX: macos build #2300

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
NeoPlays merged 2 commits into from
May 18, 2026
Merged

FIX: macos build #2300

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
1a92e12
FIX: macos build
NeoPlays May 18, 2026
cf55267
FIX: format
NeoPlays May 18, 2026
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
20 changes: 20 additions & 0 deletions launcher/afterPackMac.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -0,0 +1,20 @@
const { execSync } = require("child_process");
const path = require("path");

// electron-builder v26 no longer re-signs bundled frameworks when no certificate is
// provided. The Electron Framework ships pre-signed with the Electron project's Apple
// Team ID, causing macOS 26+ to reject the load because the main executable has no
// Team ID. Re-sign everything with ad-hoc ("-") so all binaries share a consistent
// (empty) Team ID and dyld's validation passes.
exports.default = async function afterPackMac(context) {
if (context.electronPlatformName !== "darwin") return;

const appPath = path.join(context.appOutDir, `${context.packager.appInfo.productFilename}.app`);

console.log(`[afterPackMac] Ad-hoc re-signing for macOS 26+ Team ID compatibility:`);
console.log(`[afterPackMac] ${appPath}`);

execSync(`codesign --force --deep --sign - "${appPath}"`, { stdio: "inherit" });

console.log(`[afterPackMac] Done.`);
};
14 changes: 12 additions & 2 deletions launcher/vue.config.js
View file
Open in desktop
Original file line number Diff line number Diff line change
@@ -1,4 +1,5 @@
const shouldNotarize = process.env.NOTARIZE === "true";
const isSigned = process.env.CSC_IDENTITY_AUTO_DISCOVERY !== "false";
module.exports = {
parallel: false,
pluginOptions: {
Expand All @@ -12,6 +13,7 @@ module.exports = {
appId: "com.stereum.launcher",
productName: "Stereum-Launcher",
...(shouldNotarize ? { afterSign: "@sapien99/vue-cli-plugin-electron-builder-notarize" } : {}),
...(!isSigned ? { afterPack: "./afterPackMac.js" } : {}),
buildDependenciesFromSource: false,
nodeGypRebuild: false,
npmRebuild: false,
Expand All @@ -27,8 +29,16 @@ module.exports = {
artifactName: "Stereum-Launcher-${version}.${ext}",
},
mac: {
hardenedRuntime: true,
entitlements: "./node_modules/@sapien99/vue-cli-plugin-electron-builder-notarize/entitlements.mac.inherit.plist",
// hardenedRuntime requires consistent Team IDs across all binaries; only enable
// when actually signing, otherwise the Electron Framework's pre-signed Team ID
// differs from the unsigned main binary and dyld refuses to load it (macOS 14.4+)
hardenedRuntime: isSigned,
...(isSigned
? {
entitlements: "./node_modules/@sapien99/vue-cli-plugin-electron-builder-notarize/entitlements.mac.inherit.plist",
entitlementsInherit: "./node_modules/@sapien99/vue-cli-plugin-electron-builder-notarize/entitlements.mac.inherit.plist",
}
: {}),
gatekeeperAssess: false,
artifactName: "Stereum-Launcher-${version}.${ext}",
x64ArchFiles: "**/*.node",
Expand Down
Loading