A future version of macOS (?10.16) will check code signatures more thoroughly than at present. Here’s what to do to start preparing for that.
Taccy
No more fiddling with contextual menus: this new version also adds a busy spinner, and opens older packages too.
How to check whether any Installer package or app has valid certificates, using this new version of Taccy.
Validating signatures isn’t straightforward. GUI apps are limited, and command tools confusing and prone to user error.
Want to check whether an Installer package has been properly notarized? This new version of Taccy will do it for you.
How can you tell whether a notarized app has been hardened, which Apple claims makes it more secure?
App compatibility with Catalina is different: although some may be slightly incompatible, many apps simply don’t run at all. How can you tell which are OK?
Do you want to see exactly what protected resources an app can try to access? Or check that your own app is correctly configured?
An unexpected behaviour in the codesign command could cause the app to crash when examining certain app. Now fixed, plus several new features.
Notarization is already required for some kernel extensions and apps, even in 10.14.5. So how do you tell whether an app or code bundle is notarized?
