Skip to content
/ zapp Public

Zapp is a powerful CLI tool designed to simplify and streamline the deployment of macOS applications. With Zapp, you can effortlessly create dmg and pkg files, perform code signing, notarize your apps, and modify plist files.

License

MIT license
63 stars 4 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

ironpark/zapp

BranchesTags

Repository files navigation

ZAPP

FOSSA Status Go Report Card codebeat badge GitHub Repo stars

🌐 English | 한국어 | 日本語 | 简体中文 | 繁體中文

asd

Simplify your macOS App deployment

zapp is a powerful CLI tool designed to streamline and automate the deployment process for macOS applications. It handles all stages of deployment in one tool, from dependency bundling to DMG/PKG creation, code signing, and notarization.

✨ Features

  • Create DMG files
  • Create PKG files
  • Code signing
  • Notarization / Stapling
  • Modify plist (version)
  • Auto binary dependencies bundling
  • Support GitHub Actions

⚡️ Quick start

🍺 Using Homebrew

brew tap ironpark/zapp
brew install zapp

🛠️ Build from source code

go install github.com/ironpark/zapp@latest

📖 Usage

🔏 Code Signing

Tip

If the --identity flag is not used to select a certificate, Zapp will automatically select an available certificate from the current keychain.

zapp sign --target="path/to/target.(app,dmg,pkg)"
zapp sign --identity="Developer ID Application" --target="path/to/target.(app,dmg,pkg)"

🏷️ Notarization & Stapling

Note

When executing the notarize command, if Zapp receives an app bundle path, it automatically compresses the app bundle and attempts to notarize it.

zapp notarize --profile="key-chain-profile" --target="path/to/target.(app,dmg,pkg)" --staple
zapp notarize --apple-id="[email protected]" --password="pswd" --team-id="XXXXX" --target="path/to/target.(app,dmg,pkg)" --staple

🔗 Dependency Bundling

Note

This process inspects the dependencies of the application executable, includes the necessary libraries within /Contents/Frameworks and modifies the link paths to enable standalone execution.

zapp dep --app="path/to/target.app"

additional paths to search for libraries

zapp dep --app="path/to/target.app" --libs="/usr/local/lib" --libs="/opt/homebrew/Cellar/ffmpeg/7.0.2/lib"

with sign & notarize & staple

Tip

dep, dmg, pkg commands can be used with the --sign, --notarize, and --staple flags.

  • The --sign flag will automatically sign the app bundle after bundling the dependencies.
  • The --notarize flag will automatically notarize the app bundle after signing.
zapp dep --app="path/to/target.app" --sign --notarize --profile "profile" --staple

💽 Creating DMG Files

Zapp can be used to create DMG files, a common format used for distributing macOS apps. It greatly simplifies the DMG creation process by automatically extracting icons from the app bundle, compositing disk icons, and providing an interface for drag-and-drop installation of the app.

zapp dmg --app="path/to/target.app"
zapp dmg --title="My App" \ 
  --app="path/to/target.app" \
  --icon="path/to/icon.icns" \
  --bg="path/to/background.png" \ 
  --out="MyApp.dmg"

with sign & notarize & staple

Tip

dep, dmg, pkg commands can be used with the --sign, --notarize, and --staple flags.

  • The --sign flag will automatically sign the app bundle after bundling the dependencies.
  • The --notarize flag will automatically notarize the app bundle after signing.
zapp dmg --app="path/to/target.app" --sign --notarize --profile "profile" --staple

📦 Creating PKG Files

Tip

If the --version and --identifier flags are not set, these values will be automatically retrieved from the Info.plist file of the provided app bundle

Create a PKG file from the app bundle

zapp pkg --app="path/to/target.app"
zapp pkg --out="MyApp.pkg" --version="1.2.3" --identifier="com.example.myapp" --app="path/to/target.app"

With EULA Files

Include End User License Agreement (EULA) files in multiple languages:

zapp pkg --eula=en:eula_en.txt,es:eula_es.txt,fr:eula_fr.txt --app="path/to/target.app"

with sign & notarize & staple

Tip

dep, dmg, pkg commands can be used with the --sign, --notarize, and --staple flags.

  • The --sign flag will automatically sign the app bundle after bundling the dependencies.
  • The --notarize flag will automatically notarize the app bundle after signing.
zapp pkg --app="path/to/target.app" --sign --notarize --profile "profile" --staple

Full Example

The following is a complete example showing how to use zapp to dependency bundling, codesign, packaging, notarize, and staple MyApp.app:

# Dependency bundling
zapp dep --app="MyApp.app"

# Codesign / notarize / staple
zapp sign --target="MyApp.app"
zapp notarize --profile="key-chain-profile" --target="MyApp.app" --staple

# Create pkg/dmg file
zapp pkg --app="MyApp.app" --out="MyApp.pkg"
zapp dmg --app="MyApp.app" --out="MyApp.dmg"

# Codesign / notarize / staple for pkg/dmg
zapp sign --target="MyApp.app"
zapp sign --target="MyApp.pkg"

zapp notarize --profile="key-chain-profile" --target="MyApp.pkg" --staple
zapp notarize --profile="key-chain-profile" --target="MyApp.dmg" --staple

or just use the shorthand command

zapp dep --app="MyApp.app" --sign --notarize --staple

zapp pkg --out="MyApp.pkg" --app="MyApp.app" \ 
  --sign --notarize --profile="key-chain-profile" --staple

zapp dmg --out="MyApp.dmg" --app="MyApp.app" \
  --sign --notarize --profile="key-chain-profile" --staple

License

FOSSA Status

Zapp is released under the MIT License.

Support

If you encounter any issues or have questions, please file an issue on the GitHub issue tracker.

About

Zapp is a powerful CLI tool designed to simplify and streamline the deployment of macOS applications. With Zapp, you can effortlessly create dmg and pkg files, perform code signing, notarize your apps, and modify plist files.

Topics

macos dmg pkg

Resources

Readme

License

MIT license
Activity

Stars

63 stars

Watchers

1 watching

Forks

4 forks
Report repository

Releases 8

v0.3.4 Latest
Jul 24, 2025
+ 7 releases

Sponsor this project

 
Learn more about GitHub Sponsors

Packages

No packages published

Contributors 2

  •  
  •  

Languages