If you use the Installer app the wrong way, it will open an ad-hoc signed package and quietly install apps which don’t get checked by Gatekeeper.
When you check the version of Gatekeeper data on a new Mac, why should it show one which was pushed by Apple nearly 5 years ago for El Capitan?
Details of data files for MRT, XProtect, Gatekeeper and other security features in Big Sur. Covers both Intel and M1 Macs.
Why does it take 2 years to realise that macOS has been checking signing certificate validity online?
If you were to strip unwanted code from a Universal App, would it still pass Big Sur’s strict security checks?
AirDrop is very convenient, but sets the quarantine flag, which can break Apple’s installer apps. Here’s how to remove those flags in a couple of minutes.
How Catalina and Big Sur handle the first run of apps which have their quarantine flag set. With details of log entries seen in both steps needed for approval.
How macOS checks executable code before it’s loaded and run, in macOS 10.15 and 11.0. Covering integrity checks using hashes, and validity of the signing certificate, on Intel and ARM.
Although most were worried about Apple’s failure to deliver upgrades to Big Sur, the most serious problem left many users unable to launch any apps.
Most quarantine flags in your Mac aren’t on apps but documents. Details of how they’re added, what info they contain, and what they do.