Checking signatures, notarization, and 64-bit code on different items like apps, command tools, and Installer packages just got much simpler.
A future version of macOS (?10.16) will check code signatures more thoroughly than at present. Here’s what to do to start preparing for that.
No more fiddling with contextual menus: this new version also adds a busy spinner, and opens older packages too.
How to check whether any Installer package or app has valid certificates, using this new version of Taccy.
Validating signatures isn’t straightforward. GUI apps are limited, and command tools confusing and prone to user error.
Apple’s pushed update to XProtect’s data a couple of days ago is one of the most substantial since […]
What to expect from the many changes to security and privacy in the first release of Catalina. How to run non-notarized apps, and more.
Many small independent developers have put a lot of effort into getting their app notarized. Then Apple changes the rules. What does this mean for users, and our security?
In Mojave and Catalina, tampering with the contents of an app bundle risks breaking signature checks. Here’s how to work around that.
How deeply does macOS check a signature? What are all the static code validation flags? Should my app leave macOS to perform signature checks?