I guess this will be so as I know he is programming in swift with swift UI. Why should he get a tool out for Windows or Linux? Anyhow you need to test your Software and your installer under the platform you want to notarize for. So I giess you will need at least one machine with the os platform, isn’t it so?
a) not all of us here (especially me) use or care to use Xojo
b) I doubt the Xojo implementation works well, and I doubt it works at all for non Xojo apps
Ok… confused… When notarizing an app, you need a “app specific password”, Ok. I know how to get one, but other that during the notarization process, is it ever needed again?
Re-Notarization : If you need to submit a new version or update the app for notarization, you’ll need to provide the app-specific password again at that time.
So your app notarizes, and does stuff, and notarizes multiple apps, etc.
You don’t create a new password for each app you are notarizing.
The danger if someone were to determine the password is that the permissions for that app specific password will be available to anyone with that password. Keeping it in the mac’s keychain as you seem to be is a good idea.