In beta 2 it seems that secd doesn't have an ability to read entitlements in our application. I've verified that the 3 entitlements that it claims are missing are in fact present in our application.
we're specifically interacdting with the secure enclave using https://developer.apple.com/documentation/security/certificate_key_and_trust_services/keys/storing_keys_in_the_secure_enclave?language=objc
also filed as rdar://problem/41474863
hopefully fixed in beta 3?