remove gon and use native xcode tools for notarizing

[DaMandal0rian]

This PR updates the macOS codesigning and notarization workflow for .zip binaries, transitioning from using the gon package to Xcode native tools. It ensures that the .zip file generated for distribution is signed and notarized correctly using Apple’s standard processes.

In order to achieve this, the full xcode application was required to be installed since xcode command-line tools does not have some of the required libraries, and with headless macOS it was not possible to install xcode from the app store. Xcode releases are now available for download through apple developer portal.

Code contributor checklist:

• I have read, understood and followed contributing guide

[teor2345]

Looks good, but we’re having issues with macOS CI right now, so I’m just going to re-run the tests before it merges.

[DaMandal0rian]

@teor2345 the issue with macOS ci is fixed already.

[nazar-pc]

Somewhat as expected, build in CI failed to apply stapling:

Stapling notarization to ZIP file
Processing: /Users/hetzner/actions-runner/_work/subspace/subspace/subspace-binaries.zip
Stapler is incapable of working with ZIP archive files.
Error: Process completed with exit code 66.

https://github.com/autonomys/subspace/actions/runs/11121858572/job/30901889877#step:16:98

If it was as easy as un-commenting it, we'd do that long time ago.

Stapling is optional, but would be nice to have.

[DaMandal0rian]

t was as easy as un-commenting it, we'd

Somewhat as expected, build in CI failed to apply stapling:

Stapling notarization to ZIP file
Processing: /Users/hetzner/actions-runner/_work/subspace/subspace/subspace-binaries.zip
Stapler is incapable of working with ZIP archive files.
Error: Process completed with exit code 66.

https://github.com/autonomys/subspace/actions/runs/11121858572/job/30901889877#step:16:98

If it was as easy as un-commenting it, we'd do that long time ago.

Stapling is optional, but would be nice to have.

Yes it's optional, but since we are not using .app bundles or .dmg files, it will not work with .zip archives.

https://developer.apple.com/documentation/security/customizing-the-notarization-workflow#Staple-the-ticket-to-your-distribution
While you can notarize a ZIP archive, you can’t staple to it directly. Instead, run stapler against each item that you added to the archive. Then create a new ZIP file containing the stapled items for distribution. Although tickets are created for standalone binaries, it’s not currently possible to staple tickets to them.