Profile picture
, 14 tweets, 6 min read
My Authors
Read all threads
This is a tweetstorm discussing the new features of altool 4.01 (included with Xcode 11.4), changes to the notarization documentation, and a change to notary service requirements, with the far majority coming directly from user requests

We’ll start with altool 4.01.

1/13
If you used `xcrun altool --store-password-in-keychain-item` you no longer have to supply the --username option when authenticating with --password “@keychain:<item name>” as the username is now grabbed from the keychain item.

This should make scripting easier for organizations.
All versions of altool now default to --transport HTTPS, which is much faster and doesn’t require UDP to be unblocked at the firewall. Specifying a different transport method can be done with altool 4.x (Xcode 11.x), if your org prefers pain.

3/13
While altool has always had the option to have the output returned as xml (plist) or “normal” (plain text), altool 4.01 adds a new json option that can be specified with “--output-format json”. It works with all altool commands.

4/13
When the user’s home folder and the boot volume are the same and APFS, altool 4.01 will now use clone operations (22197175) to safely save an unmodified copy of the file during upload. (To prevent changes to the file from messing up the upload operation)

5/13
Next, I’d like to discuss changes to the notarization documentation.

First, all of the requirements on the main notarization page (developer.apple.com/documentation/…) are linked to the “Resolving Common Notarization Problems” section that explains them in more depth.

6/13
There’s now an explicit note on what happens to plugins if they’re quarantined but not notarized on a user’s computer box.

Specifically, they’ll have to allow the quarantined plugin in the Security & Privacy preference pane.

7/13
There are now multiple references that *explicitly* state that the Xcode UX is only for macOS application targets. All other target types must go through altool (which can be scripted from Xcode).

8/13
developer.apple.com/documentation/…
The bottom of the Customizing the Notarization Workflow document (see above) now very explicitly gives information on how long notarization can take after an upload is completed and steps you can take to reduce notarization time.

9/13
The “Resolving Common Notarization Issues” (developer.apple.com/documentation/…) document has been updated quite a bit based on developer feedback.

For example, there’s now a section dedicated to signing installer packages and avoiding PackageMaker.

10/13
When submitting signed software, make sure the correct certificate type is used. If the software doesn’t have the correct type of cert, the software won’t be notarized.

11/13
The biggest change (developer.apple.com/documentation/…) is that proper entitlement format is now enforced in the notary service and on macOS 10.15.4 and later.

They must be properly formed ASCII-encoded, BOM-less XML files. Xcode enforces that for you, but the codesign tool doesn’t.

12/13
Be safe and always be notarizing!

13/13
One thing I’d like to add is that if you manually pass an entitlement plist file to codesign, you can ensure strict validation passes by running:

plutil -convert xml1 -o new_entitlements.plist old_entitlements.plist

which does sanitizing.

14/13

Missing some Tweet in this thread? You can try to force a refresh.

Enjoying this thread?

Keep Current with Rosyna Keller

Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

Twitter may remove this content at anytime, convert it as a PDF, save and print for later use!

Try unrolling a thread yourself!

how to unroll video

1) Follow Thread Reader App on Twitter so you can easily mention us!

2) Go to a Twitter thread (series of Tweets by the same owner) and mention us with a keyword "unroll" @threadreaderapp unroll

You can practice here first or read more on our help page!

More from @rosyna see all

Profile picture
Rosyna Keller
@rosyna
Xcode 11.0b3 includes a major update to altool (used for notarization), altool 4.0, with some awesome new features. I’d like to discuss some of the new feature here in this thread.

Questions and other feedback are welcome! 1/9(?)
First, altool actually has a man page now (man altool) accessible after new Xcode 11b3 is installed.

altool supports a new --verbose argument that’s my type of verbose (it’s overly verbose to the MAX!) that’s useful in debugging issues, filing radars, and watching progress.
The --verbose option must be after the main command, like in the screenshot below where I arbitrarily added it between the -u and the -p. Because I can.

But you may prefer it immediately after the argument for --primary-bundle-id (the first position -V can go in)
Read 9 tweets

Related threads

Profile picture
Nooresh Merani
@nooreshtech
#TweetStorm - #RSI hits 23 on #Nifty. Converting this long post on nooreshtech.co.in/2020/03/what-h… into a #tweetstorm. Let us see whenever #RSI hits the 20-25 band on #Nifty what has been the market movement in last 10-12 years.
#RSI 23. #Nifty 10782 on 5th August 2019
Nifty 10637 on 23rd August 2019 . Positive Divergence
A higher bottom on 19th September at 10670.
1.3% lower and major rally started after 1.5 months.
breaks the sloping trendline and short term bottom . Support at previous bottoms 10600
#RSI 22. #Nifty 10261 on 5th October 2018
10138 on 11th October. Positive Divergence.
3rd Bottom at 10004 on 26th October 2018. Triple Positive Divergence.
2.5 % lower on the bottom and the rally after 3 weeks.
trendline and 2 lows got taken out. Support at previous major bottoms
Read 11 tweets
Profile picture
G. Elliott Morris
@gelliottmorris
#NEW We have matched up county-level preferences for music genres with 2016 election results and have found the👏 key👏 data 👏 that capture the cultural currents that made Obama supporters flip to Donald Trump:

liking hard rock music.

THREAD.

economist.com/graphic-detail…
The data we have (from @VividSeats) is truly incredible. In every county, we have a record of the share of concert/etc ticket sales that fall into each genre in 2015/19. Here's that map (with each county scaled for population). Cities like rap/hip hop. Rural areas like country.
The music genre that most correlates with Republican vote share is, as you might expect, country music. A preference for "New Age" music (whatever that is) and Rock are also "red". Rap, Hip Hop & R&B, as mentioned, are "blue" music—as is liking alternative artists or Latin music.
Read 14 tweets
Profile picture
Nooresh Merani
@nooreshtech
#TweetStorm -#LTCG Tax on Equity - Taxing Genuine Investors to get a best case 3000-5000 cr of Tax Revenue and losing 15 lakh crore Market Cap but not catching and penalizing Tax Evaders/Money Launderers does not seem Morally or Revenue Right. #Tweetstorm.
The Big Statement in #Budget2018

3.67 Lakh Crores of Exempted #LTCG Tax in A Y 2017-2018 and 20k crores expected in tax revenue in 2019 and 40k crores in 2020.
Matching the 3.67 lakh crore number with Income Tax Website.

incometaxindia.gov.in/Pages/Direct-T…

Looks like 5 years data added as per Income Tax Website.

All Tax Payers – Range of Long Term Capital Gains Tax
Read 15 tweets
Profile picture
Nooresh Merani
@nooreshtech
#TweetStorm
In 2015-2017 A lot of people wanted to become Full Time #Investors via #Smallcaps seeing #Multibaggers shown by #Advisers #Investors. In 2018-2019 a lot of people want to become Full Time #Traders via #OptionWriting, #Futures seeing #M2M shown by #Trainers #Traders
We used to earlier get influenced by people succeeding in your #social circle where you would know people over the years but now we get influenced by #SocialMedia successes that may or may not be true. #Tweetstorm on questions on approach to #FullTime #Trading
In 2018 we got a crash in #Smallcaps and #portfolios are down 10-50%. This will test out people who became #fulltime #investors without thinking or preparation. Now in 2019 if you want to be a #FullTime #Trader this #tweetstorm gives you only questions to help you think!.
Read 17 tweets
Profile picture
Jatin
@jatinuva
#tweetstorm

"How I took back charge of my social media"

From mid of 2018, I made a significant change in my approach towards social media. I started customising my social media settings with the tools made available by each platform and the smartphone I use.
As I kept experimenting with this approach, I cracked my way out of the echo chambers I created around topics that kept me fixated, unsettled, outraged or even angry. This new approach has significantly improved my work life, personal life and my life on social media itself.
The feeling that I had until about half a year ago that we are all being consumed by social media has faded away and I am glad to report that I now use social media to my advantages.
Read 15 tweets

Trending hashtags

#New #Time #NEW #AsianPaints #buzz #IIFLWealth #TweetStorm #violence #Collective #TaaS #ArnoldBennett #Profit #spin #ToT #itsabouttime #Smallcaps #Kolkata #debugging #WBE #Documentation #Tweetstorm #BuybackTax #GoodOlBoyCultNetwork #tweetstorm #rule

Embed code for your website

×
Follow Us on Twitter!

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just three indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3.00/month or $30.00/year) and get exclusive features!

Become Premium

Too expensive? Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal Become our Patreon

Thank you for your support!