macOS package sometimes is blocked on macOS

[TravisEz13]

Issue

When running the package you get a message like this

"powershell-7.0.0-preview.5-osx-x64.pkg" can't be opened because Apple cannot check it for malicious software.

Workaround - Finder

1. Click Ok in the dialog.
2. Find the package in Finder.
3. Control Click (click while holding the ctrt key) on the package icon.
4. Click open on the context menu that comes up.
   

Workaround - Command Line

1. run sudo xattr -rd com.apple.quarantine <path to package>, replace <path to package> with the actual path to the .pkg file.
2. Then install the package as you normally would.

Required changes

1.       Opt-in to use runtime hardening when developing your app.
a.       Insert the following key by editing your info.plist: CSFlags of type int, 65536 is the hardening value
                <key>CSFlags>
                <integer>65536</integer>
                                       i.            Create entitlements file
                                     ii.            Pass a directive to codesign with entitlements file
Same entitlements file and syntax are used for both hardening and sandboxing but they are orthogonal to each other.

[dafuni]

I have this error installing rc.3
cant seem to get past even with the suggested workaround above. Need help please
OS is catalina 10.15.3

[TravisEz13]

It will still say it's blocked, but you will have an option to open it anyway if you follow these procedures accurately.

We are working to get the package with the extra layer of signing so this doesn't happen.

[dafuni]

I am holding down the control key and clicking on the package at the same time, and in the context menu, I select "open".

The problem remains the same. I do not see the option to bypass this. Is there something I am doing wrong? Or a step I missed?

[vexx32]

I found I needed to actually right-click and select to open / run the package from the context menu before MacOS Catalina would allow me to bypass the warning.

[TravisEz13]

Another option is to run sudo xattr -rd com.apple.quarantine <path to package>

If you have 7 RC.1 or newer, you can do this with Unblock-File

I updated the original description to have both workarounds.

[TravisEz13]

Status: Our build team is still working on implementing this

[TravisEz13]

Maintainers, Our build team is unlikely to get to this. I question the value as Apple has decided to move to ARM. I think we should consider removing the pkg and recommending using the formula. Bring this to the committee, if we agree.

[jshealth]

My 2 cents. I always prefer a pkg to having to install something else (Homebrew) before installing what you want. I don't have Homebrew installed. You may end up installing a whole slew of dependencies you didn't need or want.