Make certificate-password and keychain-password optional

[rinej]

• Making certificate-password optional
• Making keychain-password optional - if empty use autogenerated pass

[Copilot]

Pull Request Overview

This PR makes two inputs optional for iOS app signing: certificate-password and keychain-password. The changes remove required validation for these parameters and implement fallback logic to handle cases where they are not provided.

• Remove validation that required certificate-password and keychain-password inputs
• Add auto-generation of keychain password when not provided using openssl rand -base64 32
• Add conditional certificate import logic to handle password-protected and unprotected certificates

Reviewed Changes

Copilot reviewed 2 out of 2 changed files in this pull request and generated 2 comments.

File	Description
action.yml	Removes validation checks and implements fallback logic for optional password parameters
README.md	Updates documentation to clarify that both password parameters are now optional

---

_{Tip: Customize your code reviews with copilot-instructions.md. Create the file or learn how to get started.}

[Copilot]

The error message could be more specific about the actual failure reason. Consider capturing the security command's error output to provide more actionable feedback to users.

Suggested change

	if ! security import $CERTIFICATE_PATH -A -t cert -f pkcs12 -k $KEYCHAIN_PATH; then
	echo "Certificate import failed. If this P12 file requires a password, please provide certificate-password input."
	SECURITY_IMPORT_ERROR=$(security import $CERTIFICATE_PATH -A -t cert -f pkcs12 -k $KEYCHAIN_PATH 2>&1)
	if [ $? -ne 0 ]; then
	echo "Certificate import failed. If this P12 file requires a password, please provide certificate-password input."
	echo "Error output from 'security import':"
	echo "$SECURITY_IMPORT_ERROR"

[thymikee]

do we even need to log this? I'd remove it

[rinej]

done ✅