fix(workflows): update local signing workflow to use new code signing action and improve notarization options

.gitea/workflows/test-local-signing.yml

@@ -88,30 +88,22 @@ jobs:
           ls -la "$TEST_APP_DIR"
         shell: bash
         
-      - name: Install App Store Connect API Key
-        run: |
-          mkdir -p private_keys/
-          echo '${{ secrets.APPLE_NOTARY_API_KEY }}' > private_keys/AuthKey_${{ secrets.APPLE_NOTARY_API_KEY_ID }}.p8
-        shell: bash
-        
       - name: Sign and Notarize App
-        uses: indygreg/apple-code-sign-action@v1
+        uses: lando/code-sign-action@v3
         with:
-          input_path: TestApp.app
+          file: TestApp.app
-          output_path: TestApp.app
+          certificate-data: ${{ secrets.MACOS_CERTIFICATE }}
-          notarize: true
+          certificate-password: ${{ secrets.MACOS_CERTIFICATE_PWD }}
-          staple: true
+          apple-team-id: ${{ secrets.APPLE_TEAM_ID }}
-          p12_file: certificate.p12
+          apple-notary-user: ${{ secrets.APPLE_NOTARY_USER }}
-          p12_password: ${{ secrets.MACOS_CERTIFICATE_PWD }}
+          apple-notary-password: ${{ secrets.APPLE_NOTARY_PASSWORD }}
-          app_store_connect_api_issuer: ${{ secrets.APPLE_NOTARY_API_ISSUER_ID }}
+          apple-product-id: com.luckyworld.testapp
-          app_store_connect_api_key: ${{ secrets.APPLE_NOTARY_API_KEY_ID }}
+          options: --options runtime --entitlements LuckyWorld.entitlements
-          entitlements: LuckyWorld.entitlements
         
       - name: Cleanup
         if: always()
         run: |
           echo "🧹 Cleaning up..."
           rm -rf TestApp.app || true
-          rm -rf private_keys || true
           echo "✅ Cleanup complete"
         shell: bash