Hello! I was wondering if any other developers are experiencing issues with accessing the web extension background script console, sources, etc. on the latest Safari Technology preview or macOS Sequoia betas. We have an extension which has a persistent background script. In the latest public release of Safari version 17.5 (19618.2.12.11.6) on macOS Sonoma, everything works as expected. When I enable developer mode in Safari, it shows an additional "Develop" menu and when I select "Web Extension Background Content" in the dropdown, it shows a list of background pages for all installed extensions. Attaching a screenshot for reference. However, if I install the latest Safari Technology Preview 197 on macOS Sonoma or just test with the Safari version that comes with MacOS Sequoia beta 1 or beta 2, the "Web Extension Background Content" dropdown menu does not list any background pages. Attaching a screenshot for reference. We started discussing the issue with Apple during the latest WWDC. If anyone at Apple sees this post, I opened FB13834388 to track this issue. However according to Apple, they cannot reproduce the issue exactly as I see it on all macOS machines around me including clean virtual machines, real hardware (MacBook Pro M1 Max, MacBook Air M2, MacBook Pro Intel based). The "Web Extension Background Content" menu looks as expected on their end which is very confusing to me... I have a reason to believe that new Safari's developer tools are simply broken in the latest release. I base that statement on the fact that I cannot access it in case of our own Safari extension, Apple's sample "Sea Creator" extension and a few random extensions that I got from the App Store. I was wondering if anyone else can observe the same behavior or all machines around me are haunted :) Please share if you have similar issues with Safari Technology Preview 197 or Safari on the latest macOS Sequoia beta. Any feedback is important to us. If it's a widespread issue, then Apple should prioritize is accordingly. If the issue is somehow specific to our testing, we will fix it on our side. But any test results at this point are bringing more clarity to the situation and are highly appreciated.

Hi. We noticed quite a strange behavior in SPM where it does not warn about missing return statements in Objective-C. Is this behavior expected? Create an Xcode project in Objective-C Create an SPM package in Objective-C Add a method in the SPM package that returns a BOOL Leave the body of the method empty (no return statement) Import the package in the project and invoke the method in the project Expected: Build fails due missing return statement Observed: Build succeeds and every time the method is run, it returns random values Feedback: FB11558487 Is there a way to tell SPM to inherit build/compile flags from the Xcode project? When I try to do the same on the Xcode project side, I get the expected behavior. Build fails and I must fix the issue before proceeding. But not in case with SPM.

It looks like notarization submissions stopped going through. According to notarytool logs, the package gets successfully uploaded but processing never finishes. Our current timeout is 30 minutes. After 30 minutes of silence we see: *** Package "package-name" was REJECTED by notary service! The status of notary service looks green on the service status page: https://developer.apple.com/system-status/. But it does not seem to be the case in reality.

Hi, Our product package signing started failing out of the blue earlier today (still happening) 2022-03-09 14:33:24.782 productsign[91848:49800859] CMS signature encoding failed: A timestamp was expected but was not found. (-67882) We were wondering if the timestamp server is down or experiencing issues? What could be an issue here? Thanks. Best regards, Arthur

Hello! The documentation on ATS refers to "apps and app extensions" as scope. https://developer.apple.com/documentation/security/preventing_insecure_network_connections Does this limit its availability to apps that are running in the user context? The question is: do we get ATS protection in case of a launchd job? Let's say there is a launchd job (running in uid 1 context). It initiates network requests using URLSession API. Does it get ATS by default? Is there a way to validate that? Is it correct to assume that high level network API such as URLSession use ATS by default? Thanks. Best regards, Arthur

Hello, We have an AV product for macOS that uses Endpoint Security APIs for authorizing various system activity. The latest Monterey beta 6 introduced support for an event called "ES_EVENT_TYPE_AUTH_COPYFILE" which according to the release notes should be triggered for "copyfile" system call. The problem is I cannot seem to find any activity that actually ends up triggering this system call while using the latest Monterey beta. "/bin/cp" generates two open system calls More high level NSFileManager "copyItemAtPath:toPath:error:" generates a clone event There is a "copyfile" C function that is defined in "copyfile.h" also generates two separate open calls. Did someone figure out how to trigger it or could someone from Apple give a comment? We'd usually ask such question via DTS ticket but it's about beta software so we decided to start her on the forum. Thanks. Best regards, Arthur

Hello! We rely on applications launch date information provided by NSWorkspace. Our main applications of interest are browsers (Safari, Chrome, Firefox). We've noticed that NSWorkspace on Big Sur returns "nil" for all running applications including those that we are primarily interested in. This can be easily reproduced with the code sample below [[[NSWorkspace sharedWorkspace] runningApplications] enumerateObjectsUsingBlock:^(NSRunningApplication * _Nonnull obj, NSUInteger idx, BOOL * _Nonnull stop) { NSLog(@"App %@ launched at %@", obj.bundleIdentifier, obj.launchDate); }]; The issue is observed in all released beta builds of Big Sur including the latest beta 4. Submitted the same report in feedback assistant: FB8098936 Will this be fixed? Or we should start thinking of alternative approaches for getting the launch date? Thanks. Best regards, Arthur