ITMS-90238: Invalid Signature - The main app bundle Tren at path Tren.app has following signing error(s): a sealed resource is missing or invalid

Hello, I'm create an app using QT on MacOs with Generate to Xcode, when submitting it to the App Store the upload process was successful but I got email feedback with the message containing the following:

ITMS-90238: Invalid Signature - The main app bundle Tren at path Tren.app has following signing error(s): a sealed resource is missing or invalid . Refer to the Code Signing and Application Sandboxing Guide at http://developer.apple.com/library/mac/#documentation/Security/Conceptual/CodeSigningGuide/AboutCS/AboutCS.html and Technical Note 2206 at https://developer.apple .com/library/mac/technotes/tn2206/_index.html for more information.

ITMS-90296: App sandbox not enabled - The following executables must include the 'com.apple.security.app-sandbox' entitlement with a Boolean value of true in the entitlements property list: [[Tren.app/Contents/MacOS/Tren ]] Refer to App Sandbox page at https://developer.apple.com/documentation/security/app_sandbox for more information on sandboxing your app.

I've done the methods available in the community, but it still doesn't work. I hope someone will provide a solution, thank you

Up vote post of usmanar Down vote post of usmanar
247 views
Posted by
usmanar
Reply
Add a Comment

Replies

Ignore the second error for the moment. You’ll need to fix the first error before you can tell whether it’s relevant.

My standard practice for debugging such problems is:

  1. Choose Product > Archive to build an Xcode archive for your product.

  2. Use the Xcode organiser to upload that to App Store Connect.

  3. Confirm that you get the same error.

  4. Use the Xcode organiser to export an App Store compatible installer package (.pkg).

  5. Use Transporter to upload that to App Store Connect.

  6. Confirm that you get the same error.

  7. Now that you’ve confirmed that the installer package accurately reflects the problem, extract your app from that installer package [1].

  8. Use codesign to check its signature:

% codesign -d -vvv --deep --strict /path/to/your.app

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

[1] I use a third-party app for this, but you can do it from the command line using the techniques shown in Unpacking Apple Archives.

Posted by
eskimo
Up vote reply of eskimo Down vote reply of eskimo
Add a Comment