IdeaWell

Project ideas from Hacker News discussions.

Distributing Mac software is increasing my cortisol levels

Original Article

Hacker News Discussion

📝 Discussion Summary (Click to expand)

4 PrevalentThemes in the Discussion

Theme What the community is saying Representative quote
1. Gatekeeper friction is too clunky – Users want a one‑click or GUI way to run unsigned binaries without digging into Terminal or System Settings each time. “Any user who does not like Gatekeeper can turn it off … in ten seconds …” – many still find the extra manual step (open‑settings, click‑through) annoying. “> without disabling security features?” – Wowfunhappy
2. Apple’s $99/year developer fee and notarization process lock out hobbyists – The cost and bureaucracy are seen as barriers that discourage free/open‑source distribution. “I’ve written off Apple as a target system for hobby/open source projects … quarantine, code signing, and notarizing (which requires $99 a year) … not worth it.” – ryandrake “It has a chilling effect on releasing free apps.” – copperx
3. Apple’s security model is a trade‑off between protecting non‑technical users and restricting power users – The platform is marketed to “normies,” yet power users feel forced into a binary choice (full lock‑in vs. full disable). “Apple … would rather keep users inside the App Store where they can collect that sweet 30% and analytics.” – Zetaphor “Either you keep Gatekeeper because you like the friction it introduces, or you don’t like that friction and you should turn it off.” – Wowfunhappy
4. Notarization and code‑signing are obscure, multi‑step, and often undocumented – Developers struggle with bundling layouts, stapling receipts, and using the new notarytool. “You have to distribute a ‘bundle’ in a particular directory layout.” – pjc50
“My guide walks you through the exact steps; Apple’s docs are surprisingly poor.” – ofek (linked in the thread)		 “There’s no way to keep secure boot but bless your own changes … you have to turn it all off.” – wolvoleo

Bottom line: The discussion centers on how Apple’s security mechanisms—Gatekeeper, notarization, and the $99 developer program—create friction for developers and users who simply want to run unsigned software on macOS. Many commenters call for simpler, more transparent pathways, while others defend the protections as necessary for the broader, less‑technical user base.

🚀 Project Ideas

Gatekeeper Approver

Summary

  • A menu‑bar tool that adds a one‑click “Run Anyway” button for unsigned macOS apps, eliminating the need to open System Settings each time.
  • Provides a fast, frictionless way to launch beta or side‑loaded software while Gatekeeper remains enabled.

Details

Key Value
Target Audience macOS power users, indie developers, hobbyist testers
Core Feature One‑click approval that adds the app to a local whitelist and launches it without disabling Gatekeeper globally
Tech Stack SwiftUI + Swift, ScriptingBridge to interact with System Settings, local JSON whitelist store
Difficulty Medium
Monetization Revenue-ready: Donation

Notes

  • HN commenters repeatedly note “It’s only a problem if you want people to use your software” and want a less‑intrusive workflow.
  • Could be packaged as a free open‑source utility with optional paid support for enterprises.

NotaryLite#Summary

  • A SaaS platform that automatically signs, notarizes, and staples macOS binaries for developers, removing the $99 Apple developer fee barrier.
  • Enables hobbyist and open‑source projects to distribute notarized apps with a single upload.

Details

Key Value
Target Audience Open‑source maintainers, indie developers, small dev teams
Core Feature Drag‑and‑drop upload → automatic Apple Developer signing, Notary submission, stapling, and download of notarized artifact
Tech Stack Go backend, FastAPI, Cloudflare Workers UI, S3 storage, Apple NotaryTool API
Difficulty High
Monetization Revenue-ready: Pay‑per‑upload $0.05

Notes

  • Frequent complaints about “a chilling effect on releasing free apps” and the $99 annual fee; this solves that directly.
  • Could be marketed to projects like Homebrew formulae or CLI tools that currently avoid macOS distribution.

Trusted Whitelist Manager

Summary

  • A macOS preference pane that lets users maintain a granular list of trusted developers, granting per‑app exceptions without turning off Gatekeeper entirely.
  • Turns the “allow once” dialog into a permanent, user‑controlled trust model.

Details| Key | Value |

|-----|-------| | Target Audience | Security‑conscious macOS users, privacy advocates, developers who distribute to a known community | | Core Feature | UI to add/remove developers from a whitelist; each approved developer’s signed apps bypass Gatekeeper warnings automatically | | Tech Stack | Rust + Cocoa, SMJobBorealis for securityExtension | Monetization | Hobby |

Read Later