App is signed, notarized and stapled, I send that dmg file with file transfer tool, it can open correctly on other mac without any warning or error. However, if I send that dmg file through IM to the same mac, it will produces the "cannot check it for malicious software" error.
I check the transfered dmg with spctl -a -t open -vvv --context context:primary-signature MyApp.dmg
, it show source=Notarized Developer ID; origin=***
How can I resolve this issue?
The difference here is probably that one of your transport mechanisms quarantines the item and the other doesn’t.
It’s very likely that you have a Gatekeeper problem. Two things:
-
To confirm that, use the technique in Testing a Notarised Product.
-
Once you’ve done that, investigate and resolve the problem using the process described in Resolving Trusted Execution Problems.
Share and Enjoy
—
Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"