I mean, aside from the $100/yr cost, Apple’s signing is the most hassle free you can get. You just sign up and get a certificate. If your app is modified, macOS won’t run it. It’s really good. Just a whole lot of dotting your i’s and crossing your t’s in the actual signing process.
Windows code signing certificates are a nightmare to obtain, and provide little actual protection, but the signing process is easy.
I’d take Apple’s model any day.