How can Venelx be 10x faster than EAS or Codemagic?

Traditional CI/CD providers run builds on shared virtual machines running on older Intel processors or heavily throttled virtualized hypervisors. Venelx provisions raw, bare-metal Apple Silicon M4 Mac runners with direct SSD access and high-bandwidth caching. There is no virtualization overhead.

What does 'No Credit Games' mean?

Other platforms charge you in artificial 'credits' or 'tokens' where building on iOS costs 4x more credits per minute than Android. Venelx has clean, flat pricing. You pay your monthly subscription and get flat access. No surprise bills.

How does the one-click migration work?

When you link your GitHub, GitLab, or Bitbucket repository, Venelx automatically scans the root directory. If it finds an eas.json or codemagic.yaml, our compiler automatically parses the environments, build credentials, and target schemes, setting up your pipelines instantly.

Which app frameworks and target platforms are supported?

We support iOS, Android, Web, macOS, Windows, and Linux. You can build Expo, React Native, Flutter, Native iOS (Swift/Objective-C), Native Android (Kotlin/Java), Unity, Capacitor, and Cordova applications.

Can I use my own signing certificates and provisioning profiles?

Yes. Venelx includes a secure, encrypted secrets vault. You can upload your Apple .p12 certificates, provisioning profiles, and Android keystore files. We also support automated fastlane and Expo Credentials syncing.

Is there a limit on build concurrency or build minutes?

The Free plan includes 20 builds/mo. The Indie plan ($19) includes 150 builds/mo. The Startup plan ($49) includes 500 builds/mo, and the Scale plan ($129) includes unlimited builds. No per-minute pricing, ever.

SECURING FASTLANE CREDENTIALS IN EPHEMERAL SANDBOX ENVIRONMENTS

Fastlane is the industry standard for automating iOS and Android releases. However, storing App Store credentials, keystore passwords, and certificates on CI/CD runners poses significant security risks. Here is how to lock down your Fastlane credentials using Match, Google Cloud Storage, and ephemeral keys.

Use Fastlane Match for Certificates

Do not store certificates in your repository or upload them manually. Use Fastlane Match, which encrypts your distribution certificates and provisioning profiles using a passphrase, storing them securely in a private Git repository or Google Cloud storage bucket.

To initialize Match with a secure Google Cloud bucket:

# Fastfile configuration
lane :sync_certificates do
  match(
    type: "appstore",
    storage_mode: "gc_storage",
    google_cloud_bucket_name: "venelx-signing-keys",
    google_cloud_keys_file: "./gcp-key.json",
    readonly: true
  )
end

App Store Connect API Authentication

Avoid using Apple ID credentials with 2FA in CI, as the sessions expire frequently. Instead, create an App Store Connect API Key in the Apple Developer Portal and feed it directly to Fastlane:

# Fastfile Connect API Auth
lane :release_to_store do
  api_key = app_store_connect_api_key(
    key_id: ENV["APPLE_API_KEY_ID"],
    issuer_id: ENV["APPLE_ISSUER_ID"],
    key_content: ENV["APPLE_API_KEY_CONTENT"],
    is_key_content_base64: true
  )
  
  deliver(api_key: api_key)
end

This configuration ensures that your build pipeline never prompts for verification codes or passwords.

Cleanup Routines in CI Pipelines

In headless sandboxes, you must ensure that all certificates are shredded immediately after building to prevent subsequent jobs from accessing them. Here is a simple cleanup command sequences to place in your runner scripts:

# Shred and delete sensitive certs
shred -u -n 3 ./gcp-key.json
security delete-keychain build.keychain

By coupling Fastlane with isolated sandbox environments, you ensure that keys are completely wiped from RAM. Read about our approach to platform security in Venelx Security Disclaimers.

References & Citations

Fastlane match secrets: Fastlane Tools
Apple App Store API Keys: Developer Portal Support
Headless iOS signing guide: iOS Code Signing Tutorial