ci: add GitHub Actions workflows for multi-platform builds

- Add build-linux.yml for Ubuntu/Linux x86_64 builds
  - Installs required system dependencies (webkit2gtk, GTK3, etc.)
  - Builds Tauri application for Linux platform
  - Uploads build artifacts for distribution

- Add build-macos.yml for macOS Intel and Apple Silicon builds
  - Supports both x86_64 and aarch64 architectures
  - Handles Apple certificate import and code signing
  - Creates notarized DMG installers
  - Includes Homebrew cask generation
  - Allows skipping builds and using previous artifacts

- Add release.yml for automated releases
  - Triggers on version tags (v*)
  - Orchestrates builds across all platforms
  - Creates GitHub releases with all artifacts
  - Supports manual workflow dispatch with version input

Author: 123vivekr

.github/workflows/MACOS_BUILD_SECRETS.md

@@ -0,0 +1,70 @@
+# macOS Build Workflow Secrets
+
+This workflow requires the following GitHub secrets to be configured:
+
+## Required Secrets
+
+### 1. `APPLE_CERTIFICATE`
+- **Description**: Base64-encoded Developer ID Application certificate (.p12 file)
+- **How to obtain**:
+  ```bash
+  # Export certificate from Keychain Access as .p12
+  # Then encode it:
+  base64 -i certificate.p12 -o certificate_base64.txt
+  ```
+- **Example**: `MIIKqQ...` (very long base64 string)
+
+### 2. `APPLE_CERTIFICATE_PASSWORD`
+- **Description**: Password used when exporting the .p12 certificate
+- **Example**: `mySecurePassword123`
+
+### 3. `APPLE_SIGNING_IDENTITY`
+- **Description**: The signing identity string from your certificate
+- **Format**: `Developer ID Application: Your Name (TEAM_ID)`
+- **Example**: `Developer ID Application: Kiran Johns (Z432G66FRM)`
+- **How to find**:
+  ```bash
+  security find-identity -v -p codesigning
+  ```
+
+### 4. `APPLE_ID`
+- **Description**: Your Apple ID email used for notarization
+- **Example**: `developer@example.com`
+
+### 5. `APPLE_TEAM_ID`
+- **Description**: Your Apple Developer Team ID
+- **Example**: `Z432G66FRM`
+- **Where to find**: Apple Developer portal → Membership → Team ID
+
+### 6. `APPLE_PASSWORD`
+- **Description**: App-specific password for notarization (NOT your Apple ID password)
+- **How to create**:
+  1. Go to https://appleid.apple.com
+  2. Sign in and go to "App-Specific Passwords"
+  3. Generate a new password for "Claudia Notarization"
+- **Example**: `abcd-efgh-ijkl-mnop`
+
+### 7. `KEYCHAIN_PASSWORD`
+- **Description**: A password for the temporary keychain (can be any secure password)
+- **Example**: `tempKeychainPass123!`
+- **Note**: This is only used during the build process
+
+## Setting up Secrets in GitHub
+
+1. Go to your repository on GitHub
+2. Navigate to Settings → Secrets and variables → Actions
+3. Click "New repository secret"
+4. Add each secret with the exact name and value
+
+## Testing the Workflow
+
+The workflow will trigger on:
+- Manual dispatch (Actions tab → Build macOS → Run workflow)
+- Pushes to `main` or `test-macos-workflow` branches
+
+## Artifacts
+
+The workflow produces:
+- `Claudia.dmg` - Signed and notarized installer
+- `Claudia.app.zip` - The universal app bundle
+- `checksums.txt` - SHA256 checksums for verification

.github/workflows/build-linux.yml

@@ -0,0 +1,60 @@
+name: Build Linux
+
+on:
+  workflow_dispatch:
+  push:
+    branches: [main, test-linux-workflow]
+
+jobs:
+  build:
+    name: Build Linux x86_64
+    runs-on: ubuntu-latest
+    
+    steps:
+      - uses: actions/checkout@v4
+      
+      - name: Install system dependencies
+        run: |
+          sudo apt-get update
+          sudo apt-get install -y \
+            pkg-config \
+            libwebkit2gtk-4.1-dev \
+            libgtk-3-dev \
+            libssl-dev \
+            libayatana-appindicator3-dev \
+            librsvg2-dev
+      
+      - name: Setup Rust
+        uses: dtolnay/rust-toolchain@stable
+        with:
+          targets: x86_64-unknown-linux-gnu
+      
+      - name: Setup Rust cache
+        uses: Swatinem/rust-cache@v2
+        with:
+          workspaces: src-tauri
+      
+      - name: Setup Bun
+        uses: oven-sh/setup-bun@v2
+      
+      - name: Install dependencies
+        run: bun install
+      
+      - name: Build Tauri app
+        run: bun run tauri build --target x86_64-unknown-linux-gnu
+      
+      - name: Create artifacts directory
+        run: |
+          mkdir -p dist/linux-x86_64
+          cp src-tauri/target/x86_64-unknown-linux-gnu/release/bundle/deb/*.deb dist/linux-x86_64/ || true
+          cp src-tauri/target/x86_64-unknown-linux-gnu/release/bundle/appimage/*.AppImage dist/linux-x86_64/ || true
+          
+          # Generate checksums
+          cd dist/linux-x86_64
+          sha256sum * > checksums.txt
+      
+      - name: Upload artifacts
+        uses: actions/upload-artifact@v4
+        with:
+          name: linux-x86_64
+          path: dist/linux-x86_64/*