Big Sur - No Lock Icon on 1Password CLI Installer
Have done a clean install of macOS Big Sur. Downloaded the 1Password CLI installer (Darwin, build #1080001) from your official downloads page, but there's no lock icon in the top right corner of the installer window. Am wary of installing it as this document states: If you don’t see the lock icon, the package is unsigned, and you shouldn’t install it. Is this an issue with Big Sur or are you no longer signing the installer package?
Thanks in advance, Steve.
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: macOS 11.0.1
Sync Type: Not Provided
Comments
-
Hi @techotaku, Thank you for bringing this to our attention!
We have had similar reports regarding the signature verification process from other customers using Big Sur. We have started looking at this to see if a change in our signing process is necessary to fix the signature verification for users on Big Sur. We have not stopped signing the packages.
I will get back to you with any additional information once we have something.
-Artem
0 -
I have come across the same problem. Using the codesign utility to verify signing information indicates the CLI .pkg is not signed.
0 -
Are there any updates on progress here? Thanks!
0 -
Hey guys,
Thanks for checking in on this.I sent a query to the team about this to check where it is standing and if there's an estimated timeline for it. Hopefully we'll have some news for you soon.
0 -
Yes, we already have some possible fixes on an internal build. The next version update of the CLI should contain a full fix!
0 -
The correct command for checking pkg signatures is pkgutil --check-signature ~/Downloads/op_darwin_amd64_v1.8.0.pkg
This confirms the SHA-256 fingerprint for the package matches the fingerprint from the current AgileBits certificate. Providing this continues to be the case, can you confirm the package is safe to use and the issue lies with the installer and not the package itself?
Thanks, Steve.
0 -
That is correct @techotaku .
You can use the package safely if you've downloaded it from links in our website.0 -
The package had to be converted from a raw package to a distribution package, the next update should resolve that issue. It will be signed with the same signing certificate as previous CLI installer packages. Note that this certificate differs from the one used for 1Password for Mac.
0