Fix: Allow all apps to access imported certificate in keychain

- Add the `-A` flag to the `security import` command to allow any application to access the imported certificate's private key.
- Update the `set-key-partition-list` to include `codesign:` for non-interactive access on CI.
- Add `/usr/bin/security` to the list of trusted tools for the certificate.

Author: softartdev

.github/scripts/import_macos_dev_id_cert.sh

@@ -16,16 +16,18 @@ security list-keychains -s "$KEYCHAIN_PATH" $(security list-keychains | sed 's/[
 security default-keychain -s "$KEYCHAIN_PATH"
 security unlock-keychain -p "$KEYCHAIN_PASSWORD" "$KEYCHAIN_PATH"
 
-# Import Developer ID certificate
+# Import Developer ID certificate and allow all apps to access the private key
 security import "$P12_PATH" \
   -k "$KEYCHAIN_PATH" \
   -P "$LARGE_SECRET_PASSPHRASE" \
+  -A \
   -T /usr/bin/codesign \
-  -T /usr/bin/productbuild
+  -T /usr/bin/productbuild \
+  -T /usr/bin/security
 
-# Allow non-interactive access for codesign / productbuild / notarytool
+# Allow non-interactive access for codesign / productbuild on CI
 security set-key-partition-list \
-  -S apple-tool:,apple: \
+  -S apple-tool:,apple:,codesign: \
   -s \
   -k "$KEYCHAIN_PASSWORD" \
   "$KEYCHAIN_PATH"