Issue #16164 has been updated by Gary Larizza.
It seems that only packages that get downloaded from the Internet are affected by Gatekeeper if the com.apple.quarantine attribute is flagged. If you push out a package internally via ARD, scp, or whatever, then that attribute is not considered. We need to decide whether we sign the packages (and thus say these are "From Puppet Labs") or just ignore it and assume that no one casually downloads Puppet without knowing the consequences. I'd probably lean toward the former over the latter. ---------------------------------------- Bug #16164: Puppet package for OS X should be signed for Mountain Lion support https://projects.puppetlabs.com/issues/16164#change-70142 Author: Gary Larizza Status: Unreviewed Priority: Normal Assignee: Chris Barker Category: OSX Target version: Affected Puppet version: Keywords: gatekeeper package signing os x mac Branch: Apple introduced Gatekeeper in 10.8 and now allows developers to sign their packages <http://www.macworld.com/article/1165408/mountain_lion_hands_on_with_gatekeeper.html>. We should be signing our OS X packages to be compliant with 10.8. -- You have received this notification because you have either subscribed to it, or are involved in it. To change your notification preferences, please click here: http://projects.puppetlabs.com/my/account -- You received this message because you are subscribed to the Google Groups "Puppet Bugs" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/puppet-bugs?hl=en.
