Add exception for Twitter on Mac

This commit is contained in:
Thomas Stromberg 2022-10-30 09:40:52 -04:00
parent 1652037355
commit ee6c532577
Failed to extract signature
1 changed files with 7 additions and 2 deletions

View File

@ -36,6 +36,11 @@ WHERE -- This time should match the interval
-- Filter out transient processes that may not have an envs entry by the time we poll for it
AND p.start_time < (strftime('%s', 'now') - 5)
AND p.path NOT LIKE '/System/Library/%'
-- This condition happens a fair bit on macOS, particularly electron apps
AND NOT (
p.path LIKE '/Applications/%.app/Contents/%/Contents/MacOS/%'
AND signature.authority = 'Apple Mac OS Application Signing'
)
AND NOT (
signature.identifier LIKE 'com.apple.%'
AND signature.authority = 'Software Signing'
@ -44,10 +49,10 @@ WHERE -- This time should match the interval
'500,com.docker.cli,com.docker,Developer ID Application: Docker Inc (9BNSXJN65R)',
'500,CraftWidgetExtension,com.lukilabs.lukiapp.CraftWidget,Apple Mac OS Application Signing',
'500,Pages,com.apple.iWork.Pages,Apple Mac OS Application Signing',
'500,SafariLaunchAgent,SafariLaunchAgent-55554944882a849c6a6839b4b0e7c551bbc81898,Software Signing'
'500,SafariLaunchAgent,SafariLaunchAgent-55554944882a849c6a6839b4b0e7c551bbc81898,Software Signing',
'500,TwitterNotificationServiceExtension,maccatalyst.com.atebits.Tweetie2.NotificationServiceExtension,Apple Mac OS Application Signing'
)
AND NOT exception_key LIKE '500,Google Chrome%,Developer ID Application: Google LLC (EQHXZ8M8AV)'
AND NOT exception_key LIKE '500,Brave Browser %,com.brave.Browser.%,Developer ID Application: Brave Software, Inc. (KL8N8XSYF4)'
GROUP BY p.pid
HAVING count == 0;