Signature checks are complex. On first run with a quarantine flag, they include the contents of the Resources folder, but seldom do after that.
sandbox
How to detect and investigate a problem with Time Machine backups in Mojave, using only free tools.
Second of two, here looking at quarantine of documents, what it means, how it occurs. Much more common than apps, but mysterious.
First of two articles – this looking at how quarantine works for apps and other executables, details of the flag itself, how it behaves, and more.
A simple utility to remove the many quarantine flags which are written when sandboxed apps open movies, PDF, JPEG and other files, and can cause problems.
Do we really need tens of thousands of spurious quarantine flags attached to perfectly good documents?
How the quarantine flag for apps and that for docs opened in sandboxed apps differ, and why there are now so many quarantine flags to trip us up.
With apps in future set to come from the App Store or notarized by Apple, entitlements are going to be the rule not an exception.
Apple Mobile File Integrity is a combination of a KEXT and a LaunchDaemon which check app signatures, entitlements, and provisioning profiles.
First there were inodes, aliases, and links. Finder aliases already use the volfs file system, but Apple wants us to switch to its opaque Bookmarks
