@Sam R Firstly; if anyone is getting the error message "Unnotarized Developer ID" after they've submitted an App to the Notarization service, please use Apple's Feedback and file a Feedback report, then give me the report ID. My contact at Apple is not aware of any changes that happened in the last few weeks, and if this is what we think it is, the team he works on needs as much information as possible.
This looks like being a severe issue…
Well, I've had this error once for now (I've not yet played a lot with this either). Even if the error re-appears, what would I report more than the actual error message?
@Sam R Just be alert that I'm aware of at least one false positive where Apple didn't like the name of a function (through another developer); they were very heavy handed with the customer to start with, threatening to shut down his developer account. I don't recall exactly what he did, but he managed to get this overruled (I think he had to change the name of his function).
Staying objective with someone we dislike (or more) is hard, even for Apple… Then, we would find anything that goes beyond standards and use it as an argument to discredit the person…
And I guess Apple has no list of forbidden function names in the first place; they just invent them when they want…
@Sam R AFAIK most anti-virus software uses pattern recognition, so if you are using those API in a certain way, it will flag.
Anti-virus softwares use hashes from already-known binaries, right? It's when a new virus is discovered that AV companies add the signature to their known list.
Here, Apple doesn't know in advance what our code does. Given back my previous example, if my brand-new app deletes all the files in the users folder (and, in a side effect, also does something useful to fool the user into thinking all is working as expected), Apple will know the app is not legit only after some users have already lost their files; the developer certificate will certainly be cancelled, after the fact.
Deleting files, per se, is not using an odd or prevented API; not sure how Apple's notarisation would prevent several ways to damage computers…
@Sam R I would imagine that it will be allowed to be Notarized, AFAIK, it's only the App Store that blocks certain API.
Good to know. Maybe most of my apps will be notarisable… I'm excited to find out!
The one using QuickTime is not worth being notarised (used only strictly by me and QuickTime is unsupported at all in Catalina…).
@Sam R Not that I am aware of, I have notarized the same app multiple times a day, with only minor changes in between.