0 Replies
      Latest reply on May 22, 2020 1:37 PM by dvar
      dvar Level 1 Level 1 (0 points)

        Hello,

         

        (This is based on a recent long thread on Hacker News about developers experiencing sluggishness running command line tools in latest versions of macOS.)

         

        When I create a new executable locally (for example, a one-liner shell-script or a C program), the first execution even from Terminal causes a network request by syspolicyd to apple-cloudkit.com.

         

        The posts below appear to suggest that Gatekeeper shouldn't be firing unless I am running a downloaded item marked with the quarantine xattr, and even then only from Finder.

         

        https://forums.developer.apple.com/thread/127709

         

        https://forums.developer.apple.com/thread/127694

         

        There was discussion if this network hit is expected behavior. How can we disable it for local, non-end user distributed binaries? Is the behavior notarization-specific, or something entirely different like XProtect?

         

        Thank you

        David