"Read Anypath" Policy doesn't work as expected

Good day dev team!

Under Strict mode, I set up rules like:

watch prefix "~/" "any" w

watch prefix "~/Desktop/" "any" r

allow path "any" "/System/Library/CoreServices/Finder.app/" r "" "APPLE_PF_BINARY"


What is expected:

When I open files under ~/Desktop, DeepGuard should not make any dialog like "Finder is trying to read following files blablabla"


What really happened:

When I double click any files under ~/Desktop, DG indicates Finder is trying read files as pic bellow:



Thanks in advance & have a nice day!

Ukko
Sign In or Register to comment.