Updated Hardened Runtime Documentation
The updated Hardened Runtime docs are out!
The overview includes more information on how to enable it in Xcode and explains that the hardened runtime is designed to stop certain classes of exploits.
If your app absolutely needs to have an exploit class remain available, use a specific, unrestricted hardened runtime entitlement.
Each entitlement doc now includes real-world examples of why you may need an exploit class to remain open and lists ways you can avoid doing so.
For example, the three unsigned memory entitlements go from green (implied, do this) to red (never do this)
[…]
I’m really, really proud of the🚦 docs as they were written based on direct feedback from third-party developers.
I find it rather interesting that the use of DVDPlayback.framework requires the “Allow Unsigned Executable Memory” entitlement.
Previously:
- Annoying Catalina Security Features
- macOS 10.14.5 Requires New Developers to Notarize
- Hardened Runtime and Sandboxing
- Installing and Debugging on Mojave
- WWDC 2018 Links