feat: support `syspolicy_check` a new feature in Sonoma to determine if the provided macOS application will pass the current running configurations’ system policy.

Question

feat: support `syspolicy_check` a new feature in Sonoma to determine if the provided macOS application will pass the current running configurations’ system policy.

sambacha opened this issue 8 months ago · comments

Problem to solve

Sonoma introduces a new command line tool, from their release notes:

https://developer.apple.com/documentation/macos-release-notes/macos-14-release-notes#Trusted-Execution

/usr/bin/syspolicy:

check is a new command line tool to help determine if the provided macOS application will pass the current running configurations’ system policy.
This includes the same checks performed by the Apple notary service and other macOS Trusted Execution layers such as codesign, Gatekeeper, XProtect, and more. Please see the main page for additional details. (108737781)

Bob Gendler · Answer 1 · Mon Oct 02 2023 20:43:03 GMT+0800 (China Standard Time)

This isn't an issue with the project. This seems more useful as a discussion. Moving to that