Each time I open a new copy of Blender 2.8 on my Mac, I have to approve a security exception because Blender is “by an unidentified developer.”
I think that it would be very desirable – for this and other reasons – for Blender Foundation to secure developer licenses (for Apple and for Microsoft) which would give them the necessary cryptographic keys with which to digitally sign the files. This would itself be much stronger than reliance on “checksums,” while also removing the security warnings. We would now know that the image is authentic and untampered-with. In these unfortunate days and times, that’s quite important.
The cost is minimal – for a non-profit Foundation, it might even be free.