Open Roguelazer opened 1 year ago
Aloha, BlockBlock appears to be working correctly ...the app shown in the screen shot ("Mammoth") though signed does not appear to be notarized ...and thus is blocked.
Attached is an example of a WYS screen shot of a notarized app (note: "signed & notarized"):
You can also test for notarization via: spctl -a -t exec -vvv <path 2 app>
% spctl -a -t exec -vvv /Applications/BlockBlock\ Helper.app
/Applications/BlockBlock Helper.app: accepted
source=Notarized Developer ID
origin=Developer ID Application: Objective-See, LLC (VBG97UB4TA)
That was just an example, none of the TestFlight apps I can find have the notarized bit; do you know if it's possible to both notarize and distribute through TestFlight? Or is it just best to disable notarization checking when using TestFlight? I natively expected BB to treat TestFlight apps the same way it treats MAS-signed apps.
Good point, let me dig into this more. Can you email a test-flight app to me (patrick@objective-see.com), so I can test more, yes and ideally ignore TestFlight apps. Mahalo!
Something sort of odd I've noticed: Notarization mode blocks running Catalyst applications from TestFlight. This is weird, because they're fully-signed apps, so presumably shouldn't hit this flow at all.
I'm not sure if this is a Catalyst bug, a TestFlight bug, or a BlockBlock bug, but I figured I'd start here. This is all on Ventura (just confirmed it's still broken on 13.2).