System Integrity Protection can get in your way, and may be recommended to solve compatibility problems. It’s also changing again in Catalina.
Preparing software for distribution shouldn’t be harder than writing the code in the first place.
It took 5 apps, 4 command tools in 6 commands, 2 developer certificates and an app-specific password for 260 lines of code.
Is notarization just ‘security theatre’? How easy would it be to distribute malware through a legitimate distributor outside the App Store?
With apps in future set to come from the App Store or notarized by Apple, entitlements are going to be the rule not an exception.
Apple has shown a way ahead for full apps to access private data in Mojave, but has been curiously silent with respect to command tools. How will they cope?