I'm building a Unity application and attempting sign, package, and notarize the app for distribution outside of the App Store.
I've joined the Developer Program, and created both Application and Installer Developer Certificates and installed them to Keychain.
Using a command line build pipeline, I am able to use productbuild, productsign, and xcrun altool to generate my pkg and notarize it.
Notarization is successful, and I receive Status: success and Status Message: Package Approved. Then I staple the notarization ticket to my package.
However, when running the installer, I'm met with an error saying "MyPackage.pkg can't be installed because its digital signature is not trusted."
If I generate the same installer without notarizing it, I have no problem running it and it installs successfully if I alter my security settings to allow apps from unknown developers.
Does anyone here have experience packaging Unity apps for Mac? What am I missing here...? All the feedback I'm getting from the notarization process appears to be positive, no errors to indicate that something went wrong until I actually try to test installation.