Is there a method that would allow the creation of custom apple .pkg files that could be generated on the fly that is compatible with the new signing/notarization processes? Is there a recommended apple method?
Currently, I am able to change the post/preinstall scripts and repackage my pkg file with xar on linux.
With the new notarization process, I run into a couple of problems.
It takes quite a while to notarize a package.
I cannot run the notarization tools from linux and apple does not allow virtualized osx instances.
I haven't see a non-macOS tool for notarization submission. Though, there's not much for codesigning either. (Do you have a cross platform codesign tool?)
But... Do you need to notarize? Or sign at all? As I understand it, at least for now, those requirements only apple for files with the gatekeeper quarantine attribute set. (And probably kernel extensions)
If you're re-creating pkgs, are you doing it on the endpoints where you could remove the quarantine bit?
Also not quite the same, but if you wanted to pay money there is fairly inexpensive hosted apple machines. (I use some of those for my codesigning pipeline, for just this reason)