feat(bundle): add --no-sign flag to skip code signing in bundling pro…

[ShigrafS]

Description

This PR addresses an issue where building a Tauri application locally fails if code signing environment variables are not configured. It adds a new --no-sign CLI flag to the tauri build command, allowing developers and contributors to easily create unsigned application bundles for testing and development purposes.

---

Summary

This PR adds the --no-sign flag to the tauri build command, streamlining the development workflow by allowing unsigned bundles to be built without the need for code signing keys. This is particularly useful for local testing, where the full build and install process can be checked without the overhead of configuring signing certificates.

🧩 Related Issue

Closes #11626
[feat] build without signing cli flag

✨ What's New

• New CLI Flag: Adds the --no-sign option to tauri build and tauri bundle.
• Bundler Logic: Updates the tauri-bundler to check for this flag and skip the code signing step for both macOS and Windows.
• Codebase Integration: A new no_sign field is added to the bundler's Settings struct to pass this flag's state through the build pipeline.

💡 Why This Matters

• Improved Developer Experience: Simplifies the build process for contributors and new developers who don't have access to signing keys.
• Faster Iteration: Allows for rapid testing of the installer, uninstaller, and updater functionality without the time-consuming signing process.
• Flexibility: Provides a native CLI solution, eliminating the need for workarounds like using separate configuration files for local builds.

How has this PR been tested?

• Local Builds: Tested with and without the --no-sign flag on both macOS and Windows to ensure that the signing process is correctly skipped.
• Logic Verification: Confirmed that the no_sign flag is properly handled within tauri-bundler, preventing the call to the signing functions.

Is this a breaking change?

• No. This change adds a new, optional flag and does not modify any existing functionality.

Does this PR require an update to the documentation?

• Yes. The tauri build and tauri bundle CLI references should be updated to include the new --no-sign flag and its purpose.

Checklist:

• The code has been tested locally
• Tests have been added to cover all new functionality
• The documentation has been updated to reflect any changes

[ShigrafS]

Hi @Legend-Master
This PR ready.
Kindly review it.

[Legend-Master]

Thanks for the PR, but before a proper review, first I'll need ask you to cleanup the unrelated changes and things like // <-- ADDED THIS LINE TO FIX THE COMPILER ERROR 😂

[ShigrafS]

Sure!
I'll make changes, verify build and ping you.

[ShigrafS]

@Legend-Master
Build successfully: Finished dev profile [unoptimized + debuginfo] target(s) in 28m 13s

The other changes are due to linter.
Please let me know how should I proceed with it.
Thanks!

[Legend-Master]

The other changes are due to linter.
Please let me know how should I proceed with it.

You'll need to revert them as well

[ShigrafS]

Thank you for your guidance @Legend-Master
I've made the necessary changes.

[github-actions]

Package Changes Through 332f55f

There are 2 changes which include tauri-cli with minor, tauri-bundler with minor

Planned Package Versions

The following package releases are the planned based on the context of changes in this pull request.

package	current	next
tauri-bundler	2.6.0	2.7.0
@tauri-apps/cli	2.8.1	2.8.2
tauri-cli	2.8.0	2.9.0

Add another change file through the GitHub UI by following this link.

---

Read about change files or the docs at github.com/jbolda/covector

[Legend-Master]

We'll also a change file

https://github.com/tauri-apps/tauri/blob/dev/.changes/README.md

@FabianLars Since I'm not familiar with signing on macOS (I think it would fail if you have signingIdentity set but not the signing env vars), do you think we should also add this for macOS? I know we don't force the signing on Linux and the mobile signing process is not covered by tauri cli so probably don't need it for those platforms

[Legend-Master]

Suggested change

	pub no_sign: bool,
	no_sign: bool,

[ShigrafS]

Reverting this back to public, since making this private is breaking the code.

[Legend-Master]

This should be put into a getter below instead of being pub here

[ShigrafS]

@Legend-Master @lucasfernog
Should I rebase the branch?

[FabianLars]

nah you're good, github shows no merge conflicts yet. we're just waiting for 2.9 to get a bit closer before we merge it.