Path: csiph.com!fu-berlin.de!uni-berlin.de!individual.net!not-for-mail From: "David B." Newsgroups: uk.comp.sys.mac Subject: Re: New postings to top of listed postings Date: Thu, 31 Jul 2025 19:02:45 +0100 Lines: 63 Message-ID: References: Reply-To: boaterdave@hotmail.co.uk Mime-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 8bit X-Trace: individual.net 8BochrBChnbVgbkJxZGAQAB7rIh6WHWzMfKaROFW245FBBGeHA Cancel-Lock: sha1:2dciQz/e5SWqrF9pEWGV4FuaT8M= sha256:Bk2Zw8Avn7RmuM/bHR9FkWbARH/t4WYJ9mXvOgBhM20= User-Agent: Mozilla Thunderbird In-Reply-To: Xref: csiph.com uk.comp.sys.mac:181519 On 31/07/2025 17:55, Tyrone wrote: > On Jul 31, 2025 at 8:59:37 AM EDT, ""David B."" wrote: > >> On 31/07/2025 13:51, David B. wrote: >>> On 31/07/2025 10:41, Peter James wrote: >>>> I have a problem with Usenapp. All new postings are scattered through >>>> the list >>>> of other postings and I would like them displayed at the top of the >>>> screen. >>>> Can anyone tell me how to do this? >>>> >>>> Thank you, petefj. >>> >>> >>> Did you obtain the software from the Apple App Store? >>> >>> No? >>> >>> So is the developer Certified by Apple? >>> >>> See: https://support.apple.com/en-gb/102435 >> >> Do you believe THIS? (Not updated since 2020 - I wonder why.) >> >> https://www.xoroxsoft.com/privacy/ > > Take your paranoia elsewhere. As a security-conscious Mac user, I would like a safe and intelligent way to analyze macOS software (such as .app bundles and .dmg files) without needing to install or run them. While I understand that ChatGPT itself cannot execute software for safety reasons, it /could/ provide enormous value by offering: Passive static analysis of app bundles Inspection of code-signing and notarisation status Warnings about suspicious patterns (e.g., launch agents, silent background activity, obfuscated components) Interpretation of embedded strings, certificates, and potential network behaviour This would be especially helpful for proprietary tools where the developer is unknown or not transparent. For instance, I have strong doubts about a macOS tool called EtreCheck, which installs deeply into the system and collects diagnostic data. Despite it being notarised by Apple, the developer (who goes by a pseudonym) has ignored repeated support inquiries. This lack of accountability — combined with notarisation being no guarantee of ethics or privacy — highlights the need for independent, AI-assisted evaluation tools. Similarly,nobody has ever confirmed that Usenapp has been checked. The developer is an unknown quantity with no on-line presence! Ideally, ChatGPT could either integrate with services like VirusTotal or guide users through safe inspection methods. Even helping users run passive Terminal checks (e.g., codesign, spctl, strings) and interpreting those results intelligently would be a great first step. I believe many responsible users would appreciate the ability to assess macOS apps more critically and safely — without blind trust or risk.