From 4d6be3d2487b6896e1ae70e2ddd4d2f395e39b31 Mon Sep 17 00:00:00 2001 From: Kyle Spearrin Date: Fri, 23 Aug 2019 12:30:30 -0400 Subject: [PATCH] hardened runtime entitlements --- src/safari/desktop/desktop.entitlements | 6 +++++- src/safari/safari/safari.entitlements | 4 ++++ 2 files changed, 9 insertions(+), 1 deletion(-) diff --git a/src/safari/desktop/desktop.entitlements b/src/safari/desktop/desktop.entitlements index f2ef3ae026..b848666d0d 100644 --- a/src/safari/desktop/desktop.entitlements +++ b/src/safari/desktop/desktop.entitlements @@ -4,7 +4,11 @@ com.apple.security.app-sandbox - com.apple.security.files.user-selected.read-only + com.apple.security.files.user-selected.read-write + com.apple.security.cs.allow-unsigned-executable-memory + + com.apple.security.cs.disable-library-validation + diff --git a/src/safari/safari/safari.entitlements b/src/safari/safari/safari.entitlements index 85c03d7b48..c7e6e71dee 100644 --- a/src/safari/safari/safari.entitlements +++ b/src/safari/safari/safari.entitlements @@ -10,5 +10,9 @@ com.apple.security.network.server + com.apple.security.cs.allow-unsigned-executable-memory + + com.apple.security.cs.disable-library-validation +