Description
macOS Gatekeeper has rejected this item. It has no usable code signature and is configured to run automatically at startup, creating a significant security risk.
Path
/Users/user/Library/LaunchAgents/homebrew.mxcl.jupyterlab.plist
Evidence
| spctl_status | rejected |
| spctl_source | no usable signature |
| codesign_status | code object is not signed at all |
Recommendation
Do not run this item unless you explicitly trust the source. Consider using the official JupyterLab desktop app from jupyter.org which is properly signed.
Description
Code signature verification failed for ChatGPT. This could indicate tampering, corruption, or a modified binary that no longer matches its original signature.
Path
/Applications/ChatGPT.app/Contents/MacOS/ChatGPT
Evidence
| codesign_status | fail |
| codesign_team_id | 2DC432GLL2 |
| vendor | OpenAI |
Recommendation
Re-download ChatGPT from the official OpenAI website or Mac App Store. Delete the current installation before reinstalling.
Description
Code signature verification failed for Signal. The Electron framework resources have been modified since the app was signed.
Path
/Applications/Signal.app/Contents/MacOS/Signal
Evidence
| codesign_status | fail |
| codesign_team_id | U68MSDN6DR |
| vendor | Signal Messenger |
Recommendation
Reinstall Signal from signal.org. For a secure messaging app, signature integrity is especially critical.
Description
A privileged helper tool is running without a valid code signature. This daemon runs with elevated permissions.
Path
/Library/LaunchDaemons/com.docker.socket.plist
Evidence
| codesign_status | Permission denied |
| spctl_status | unable to verify |
Recommendation
Reinstall Docker Desktop from docker.com. If you no longer use Docker, remove it completely using their official uninstaller.
Description
macOS Gatekeeper has blocked this Zoom helper utility. The code is validly signed but does not meet the requirements for execution as a standalone binary.
Path
/Library/LaunchDaemons/us.zoom.ZoomDaemon.plist
Evidence
| spctl_status | rejected |
| spctl_source | Developer ID Application: Zoom Video Communications, Inc. |
| spctl_team_id | BJ4HAAB9B3 |
Recommendation
This is a known helper utility for Zoom. Update to the latest version of Zoom which may resolve the issue.
Description
Microsoft AutoUpdate helper is signed by Microsoft but rejected by Gatekeeper for standalone execution.
Path
/Library/LaunchDaemons/com.microsoft.autoupdate.helper.plist
Evidence
| spctl_status | rejected |
| spctl_source | Developer ID Application: Microsoft Corporation |
| spctl_team_id | UBF8T346G9 |
Recommendation
This is a legitimate Microsoft component. Run Microsoft AutoUpdate to get the latest version which may resolve the issue.
Description
Code signature verification failed for Postman API client. Framework files have been modified.
Path
/Applications/Postman.app/Contents/MacOS/Postman
Evidence
| codesign_status | fail |
| codesign_team_id | H7H8Q7M5CK |
| vendor | Postman Inc. |
Recommendation
Reinstall Postman from postman.com to restore signature integrity.
Description
GPG Keychain has an invalid code signature. The encryption tool's integrity cannot be verified.
Path
/Applications/GPG Keychain.app/Contents/MacOS/GPG Keychain
Evidence
| codesign_status | fail |
| codesign_team_id | PKV8ZPD836 |
| vendor | GPGTools GmbH |
Recommendation
Reinstall from gpgtools.org. For cryptographic software, signature integrity is critical.
Description
Ookla Speedtest app has framework files that don't match the original signature.
Path
/Applications/Speedtest.app/Contents/MacOS/Speedtest
Evidence
| codesign_status | fail |
| codesign_team_id | HT7M5ALSQW |
| vendor | Ookla |
Recommendation
Reinstall from the Mac App Store or speedtest.net.
Description
NextDNS privacy tool has modified Swift framework files.
Path
/Applications/NextDNS.app/Contents/MacOS/NextDNS
Evidence
| codesign_status | fail |
| codesign_team_id | 2QTM96NR8V |
| vendor | NextDNS Inc. |
Recommendation
Reinstall from nextdns.io or the Mac App Store.
Description
iTerm2 is signed by an identified Apple developer but not downloaded from the Mac App Store. This is common for legitimate developer tools.
Path
/Applications/iTerm.app/Contents/MacOS/iTerm2
Evidence
| spctl_status | approved |
| spctl_source | Developer ID Application: George Nachman |
| notarized | yes |
Recommendation
No action needed. iTerm2 is a well-known, trusted terminal application in the developer community.
Description
Visual Studio Code is signed by Microsoft but distributed outside the Mac App Store.
Path
/Applications/Visual Studio Code.app/Contents/MacOS/Electron
Evidence
| spctl_status | approved |
| spctl_source | Developer ID Application: Microsoft Corporation |
| notarized | yes |
Recommendation
No action needed. VS Code is a trusted development tool from Microsoft.
Description
htop is an unsigned command-line utility installed via Homebrew. This is normal for open-source CLI tools.
Path
/opt/homebrew/bin/htop
Evidence
| codesign_status | not signed |
| install_source | Homebrew Cask |
Recommendation
No action needed if you trust Homebrew. Keep Homebrew updated with brew update && brew upgrade.
Description
Safari is signed by Apple and is part of the core macOS system. All security checks passed.
Path
/Applications/Safari.app/Contents/MacOS/Safari
Evidence
| codesign_status | valid |
| spctl_source | Apple System |
| signed_by | Software Signing (Apple) |
Recommendation
No action needed. This is a trusted Apple system application.
Description
Xcode was downloaded from the Mac App Store and is signed by Apple. Maximum trust level.
Path
/Applications/Xcode.app/Contents/MacOS/Xcode
Evidence
| codesign_status | valid |
| spctl_source | Mac App Store |
| signed_by | Apple Inc. |
Recommendation
No action needed. App Store apps are reviewed and signed by Apple.