Security macOS xcode27.0 b1

#Security.framework

diff -ruN /Applications/Xcode_26.5.0.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/CSCommon.h /Applications/Xcode_27.0.0-beta.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/CSCommon.h
--- /Applications/Xcode_26.5.0.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/CSCommon.h	2026-04-24 22:19:26
+++ /Applications/Xcode_27.0.0-beta.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/CSCommon.h	2026-05-24 03:10:15
@@ -56,6 +56,9 @@
 
 CF_ASSUME_NONNULL_BEGIN
 
+// The maximum number of signatures allowed in a SuperBlob
+#define kSecCS_MAX_SIGNATURES 2
+
 /*
 	Code Signing specific OSStatus codes.
 	[Assigned range 0xFFFE_FAxx].
@@ -146,6 +149,11 @@
 	errSecCSRevokedNotarization =		-66992, /* notarization indicates this code has been revoked */
 	errSecCSCMSConstructionFailed =		-66991, /* CMS construction failed, see logs for deeper error */
 	errSecCSRemoteSignerFailed =		-66990, /* remote signing block did not return a signature */
+	errSecCSRemoteSignerFirstSlotFull = -66989, /* a certificate was already added to the SecRemoteCodeSigner for the first slot signature */
+    errSecCSRemoteSignerSecondSlotFull = -66988, /* a certificate was already added to the SecRemoteCodeSigner for the second slot signature */
+    errSecCSUnsupportedAlgorithm = 		-66987, /* a requested signature algorithm is not supported */
+    errSecCSMultipleSelfSigning =		-66986, /* creating multiple signatures is not allowed with self-signed certificates */
+    errSecCSDetachedCertificates =      -66985, /* an error with detached certificates occurred */
 };
 
 /*
@@ -169,6 +177,7 @@
 extern const CFStringRef kSecCFErrorGuestAttributes; /* CFTypeRef: Guest attribute set of element not accepted */
 extern const CFStringRef kSecCFErrorRequirementSyntax; /* CFStringRef: compilation error for Requirement source */
 extern const CFStringRef kSecCFErrorPath;			/* CFURLRef: subcomponent containing the error */
+extern const CFStringRef kSecCFErrorDetachedCertificates;	/* CFErrorRef: detached certificates error */
 
 /*!
 	@typedef SecCodeRef
@@ -244,7 +253,9 @@
 	kSecCSQuickCheck = 1 << 26,		/* (internal) */
 	kSecCSApplyEmbeddedPolicy = 1 << 25, /* Apply Embedded (iPhone) policy regardless of the platform we're running on */
 	kSecCSStripDisallowedXattrs = 1 << 24, /* Strip disallowed xattrs, such as com.apple.FinderInfo and com.apple.ResourceFork */
-    kSecCSMatchGuestRequirementInKernel = 1 << 23, /* Request matching the provided requirement in kernel against the running guest rather than on disk*/
+	kSecCSMatchGuestRequirementInKernel = 1 << 23, /* Request matching the provided requirement in kernel against the running guest rather than on disk*/
+	kSecCSUseSignature1 = 1 << 22, /* use signature slot 1 (RSA) for validation and information retrieval */
+	kSecCSUseSignature2 = 1 << 21, /* use signature slot 2 (PQ) for validation and information retrieval */
 };
 
 
diff -ruN /Applications/Xcode_26.5.0.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/SecCode.h /Applications/Xcode_27.0.0-beta.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/SecCode.h
--- /Applications/Xcode_26.5.0.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/SecCode.h	2026-04-24 22:19:26
+++ /Applications/Xcode_27.0.0-beta.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/SecCode.h	2026-05-24 03:10:16
@@ -290,6 +290,7 @@
 	For a given Code or StaticCode object, returns a URL to a location on disk where the
 	code object can be found. For single files, the URL points to that file.
 	For bundles, it points to the directory containing the entire bundle.
+	If the process is the main executable of a bundle, then the bundle path will be returned.
 	
 	@param staticCode The Code or StaticCode object to be located. For a Code
 		argument, its StaticCode is processed as per SecCodeCopyStaticCode.
@@ -470,13 +471,15 @@
 	kSecCSRequirementInformation = 1 << 2,
 	kSecCSDynamicInformation = 1 << 3,
 	kSecCSContentInformation = 1 << 4,
-    kSecCSSkipResourceDirectory = 1 << 5,
-    kSecCSCalculateCMSDigest = 1 << 6,
+	kSecCSSkipResourceDirectory = 1 << 5,
+	kSecCSCalculateCMSDigest = 1 << 6,
 };
 													/* flag required to get this value */
 extern const CFStringRef kSecCodeInfoCertificates;	/* Signing */
 extern const CFStringRef kSecCodeInfoChangedFiles;	/* Content */
 extern const CFStringRef kSecCodeInfoCMS;			/* Signing */
+extern const CFStringRef kSecCodeInfoTotalSignatures; /* Signing */
+extern const CFStringRef kSecCodeInfoChosenSignature; /* Signing */
 extern const CFStringRef kSecCodeInfoDesignatedRequirement; /* Requirement */
 extern const CFStringRef kSecCodeInfoEntitlements;	/* generic */
 extern const CFStringRef kSecCodeInfoEntitlementsDict; /* generic */
@@ -502,6 +505,7 @@
 extern const CFStringRef kSecCodeInfoCdHashes;		/* generic */
 extern const CFStringRef kSecCodeInfoRuntimeVersion; /*generic */
 extern const CFStringRef kSecCodeInfoStapledNotarizationTicket; /* content */
+extern const CFStringRef kSecCodeInfoSignerInfoSKID; /* Signing */
 
 OSStatus SecCodeCopySigningInformation(SecStaticCodeRef code, SecCSFlags flags,
 	CFDictionaryRef * __nonnull CF_RETURNS_RETAINED information);
diff -ruN /Applications/Xcode_26.5.0.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/oidsalg.h /Applications/Xcode_27.0.0-beta.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/oidsalg.h
--- /Applications/Xcode_26.5.0.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/oidsalg.h	2026-04-24 22:19:23
+++ /Applications/Xcode_27.0.0-beta.app/Contents/Developer/Platforms/MacOSX.platform/Developer/SDKs/MacOSX.sdk/System/Library/Frameworks/Security.framework/Headers/oidsalg.h	2026-05-24 03:10:13
@@ -86,6 +86,8 @@
 	CSSMOID_ECDSA_WithSHA384 DEPRECATED_IN_MAC_OS_X_VERSION_10_7_AND_LATER,
 	CSSMOID_ECDSA_WithSHA512 DEPRECATED_IN_MAC_OS_X_VERSION_10_7_AND_LATER,
 	CSSMOID_ECDSA_WithSpecified DEPRECATED_IN_MAC_OS_X_VERSION_10_7_AND_LATER,
+    CSSMOID_HYBRID_COMPOSITE_MLDSA87_RSA3072_WithSHA512 DEPRECATED_IN_MAC_OS_X_VERSION_10_7_AND_LATER,
+    CSSMOID_HYBRID_COMPOSITE_MLDSA87_RSA3072_WithSHA512_draft_13 DEPRECATED_IN_MAC_OS_X_VERSION_10_7_AND_LATER,
 	CSSMOID_APPLE_ISIGN DEPRECATED_IN_MAC_OS_X_VERSION_10_7_AND_LATER,
 	CSSMOID_APPLE_X509_BASIC DEPRECATED_IN_MAC_OS_X_VERSION_10_7_AND_LATER,
 	CSSMOID_APPLE_TP_SSL DEPRECATED_IN_MAC_OS_X_VERSION_10_7_AND_LATER,

Uh oh!

Security macOS xcode27.0 b1

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!

Uh oh!