Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Sloth 3.3 Application Unnotarized Developer ID #32

Open
uurazzle opened this issue Apr 25, 2024 · 4 comments
Open

Sloth 3.3 Application Unnotarized Developer ID #32

uurazzle opened this issue Apr 25, 2024 · 4 comments

Comments

@uurazzle
Copy link

uurazzle commented Apr 25, 2024
edited
Loading

Hi:

Thanks for making Sloth available to the community.

The latest release of the Sloth 3.3 application is not notarized.

For example...

spctl -a -vvv -t install /Applications/Utilities/Admin/Sloth.app 
/Applications/Utilities/Admin/Sloth.app: rejected
source=Unnotarized Developer ID
origin=Developer ID Application: Sveinbjorn Thordarson (5WX26Y89JP)

The app or component was signed with an Apple-issued Developer ID certificate but not appear to be notarized. Since the exceptions described above for the Developer ID status are not met, macOS will not allow this code to run (unless it is found to be notarized when Gatekeeper runs).

If you attempt to run an application on macOS that has not been notarized with a developer ID, you may encounter a security warning or prompt. macOS includes a feature called Gatekeeper, which helps protect your Mac from running malicious software by checking the developer ID of applications before allowing them to run.

When you try to open an application that is not notarized, Gatekeeper may display a warning message indicating that the application is from an unidentified developer or has not been notarized. You may see a message like "macOS cannot verify the developer of this app" or "This app cannot be opened because the developer cannot be verified."

To bypass this warning and open the application, you can right-click on the application icon and select "Open" from the context menu. You'll then see an option to open the application despite the security warning. Keep in mind that bypassing this warning poses a potential security risk, as the application has not undergone Apple's notarization process, which helps ensure that it is from a trusted source and has not been tampered with.

https://developer.apple.com/documentation/security/notarizing_macos_software_before_distribution
@zenspider
Copy link

This appears to be no longer bypassable on Sequoia (15.0)... This app is unrunnable as a result.

@zenspider
Copy link

For the record, 3.2 crashes on launch on Sequoia... so this app is DOA currently.

@zenspider
Copy link

CORRECTION: you still can bypass! But you must open the Privacy & Security settings and click "Open Anyway" after right-click open

@artivilla
Copy link

Is there a way I can download without having to bypass security settings?

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
3 participants
@zenspider @artivilla @uurazzle