I assume that the package is built from source and therefore

Question

I assume that the package is built from source and therefore not signed with your entitlement to EndpointSecurity that you ve been granted by Apple is that correct

Stefano Bonicatti · Answer

This would be a question for < C01DXJL16D8|fleet> although it s described in their readme

Stefano Bonicatti · Answer

I m not sure how they fully handle things but I would say that if they are re doing packages those definitely need to be signed and notarized

Stefano Bonicatti · Answer

Which is needed to have endpoint security

Mystery Incorporated · Answer

Thanks yea they mention the ability for me to sign and notirize but I wasn t sure if that s just for the installer and the binary istelf is already signed or what I am unfamiliar with how that process works

Mike Myers · Answer

The signing process involves the pkg installer and everything inside it so there is signing at both layers of the package I guess what Fleet allows here is best asked in < C01DXJL16D8|fleet>

sharvil · Answer

Didn t see this added the details here <https osquery slack com archives C01DXJL16D8 p1654519649024239 thread ts=1654428434 099379 amp cid=C01DXJL16D8>