Check if an app has been signed:
codesign --verify --verbose "full/path/to/your.app"
Sign a pkg file:
sudo productbuild --package "your.pkg" --content "/path/to/your/app.app" --sign "name of your certificate" "name of your signed.pkg"
Check if a pkg has been signed:
pkgutil --check-signature "/path/to/your/app.pkg"
Leave a Reply