Hello, is there a way to proactively identify which installation PKGs have an installer cert that is about to expire?
pkgutil --check-signature /path/to/installer.pkg
Running pkgutil is a nice way of verifying an expired package, but it won't tell the expiration date of the cert. I'd like to avoid manually opening each package if necessary.