Who’s been ghost notarizing other people’s apps, and is Catalina wasting time to check whether shell scripts are notarized?
Gatekeeper
An explanation of the magic which takes place when you double-click a document, the things that can go wrong, and how to fix them.
What has happened in the Applications folder: two apps with an identical name? Isn’t it protected by SIP anyway?
App translocation, signature checks, XProtect and more explained, with key messages from the log to help you diagnose problems.
Using Little Snitch, this becomes unresolvable, as the app can’t complete first run checks, and every time you try, it’s translocated to a different folder, causing Little Snitch to block it again.
What’s changed in 10.15.2? One of Gatekeeper’s most important dialogs, which now suggests that notarized apps haven’t been notarized at all.
From launch, through security checks, TCC and privacy, RunningBoard, to memory management and the Main Event Loop. A comprehensive summary.
How to check whether a macOS Installer app still has a valid signature, and where to find its hidden Installer packages.
A future version of macOS (?10.16) will check code signatures more thoroughly than at present. Here’s what to do to start preparing for that.
Some important similarities, such as the entry marking the beginning of startup, but plenty of changes in APFS and security entries.
The Eclectic Light Company 