Antivirus policies and procedures - codemagic-ci-cd/company-handbook GitHub Wiki

Codemagic employees use Mac computers as their workstations and rely on Mac built-in security features including, but not limited to

• XProtect - Antivirus
• Malware Removal Tool - Antimalware
• Gatekeeper - Verifying software integrity
• System Integrity Protection - Application access control management
• Keychain - Sensitive data protection and access control

Codemagic believes introducing new 3rd party tooling for anti-virus is not only unnecessary but also poses a security risk so we rely on the native functionality of Apple-provided workstations and deem this sufficient.

Employees are required to keep up to date with the latest security patches of macOS software.

exceptions may be granted if sufficient controls are present. The CTO is responsible for approving non-macOS devices.