Apps are able to ask for permission to creep out of the restrictive “sandbox” and access files more broadly across your Mac’s hard drive. The severe restrictions of the Mac App Store’s security policies were one of the reasons most frequently cited by developers who decided to bail out on the store and just go back to selling apps directly.For those apps living outside the Mac App Store, Snell writes they can now be “notarized” by being uploaded to an Apple server, which scans them for known malware. This isn’t a review; it’s a half-step for security, and possibly a way for Apple to reach out to more developers and encourage them to make their apps available via the Mac App Store. Taken in context, what we’re seeing is Apple extending the leash for Mac App Store apps while trying to corral those outside the Mac App Store, broadening its reach and scope. The approach seems to be more apps Apple has qualified as ‘good’ rather than just grabbing for anything that will pass review. The moves won’t please everyone, but they rarely do. We should keep in mind that Apple’s extended macOS universe will soon open a portal to the iOS sphere, and developers will have the ability to make their apps available to both platforms. The rules have to make sense for both ecosystems.