From 83f8975a503714185fd389053e3c4e42379bf9d7 Mon Sep 17 00:00:00 2001 From: "mr. M" Date: Thu, 23 Jan 2025 12:20:20 +0100 Subject: [PATCH] Update macOS build workflow to include mac dependency and modify Firefox browser identifier in hardened runtime configuration --- .github/workflows/build.yml | 2 +- .../v2/production/firefox-browser-xml.patch | 13 +++++++++++++ 2 files changed, 14 insertions(+), 1 deletion(-) create mode 100644 src/security/mac/hardenedruntime/v2/production/firefox-browser-xml.patch diff --git a/.github/workflows/build.yml b/.github/workflows/build.yml index 4ac5e4999..75fa36403 100644 --- a/.github/workflows/build.yml +++ b/.github/workflows/build.yml @@ -356,7 +356,7 @@ jobs: permissions: contents: write secrets: inherit - needs: [build-data] + needs: [build-data, mac] with: build-version: ${{ needs.build-data.outputs.version }} release-branch: ${{ inputs.update_branch }} diff --git a/src/security/mac/hardenedruntime/v2/production/firefox-browser-xml.patch b/src/security/mac/hardenedruntime/v2/production/firefox-browser-xml.patch new file mode 100644 index 000000000..f6c9b347e --- /dev/null +++ b/src/security/mac/hardenedruntime/v2/production/firefox-browser-xml.patch @@ -0,0 +1,13 @@ +diff --git a/security/mac/hardenedruntime/v2/production/firefox.browser.xml b/security/mac/hardenedruntime/v2/production/firefox.browser.xml +index abbf33e9d2b3c9d1e0a34bd46e7cd289c435533b..4d988ca8201fa6aba6ca049e97d3cdc6b772b5eb 100644 +--- a/security/mac/hardenedruntime/v2/production/firefox.browser.xml ++++ b/security/mac/hardenedruntime/v2/production/firefox.browser.xml +@@ -26,7 +26,7 @@ + + + com.apple.application-identifier +- 43AQ936H96.org.mozilla.firefox ++ H36NPCN86W.app.zen-browser.zen + + + com.apple.developer.web-browser.public-key-credential