I’m not sure how they fully handle things but I would say that if they are re-doing packages, those definitely need to be signed and notarized.
Which is needed to have endpoint security
06/06/2022, 10:07 AM
Thanks yea they mention the ability for me to sign and notirize but I wasn't sure if that's just for the installer and the binary istelf is already signed or what? I am unfamiliar with how that process works
06/06/2022, 6:50 PM
The signing process involves the pkg installer and everything inside it, so there is signing at both layers of the package. I guess what Fleet allows here is best asked in #fleet