Skip to main content

Hi Everyone,

 

I have the following use case:
How can i target the git command in the terminal?
The Git binary was installed by the user via Homebrew.

I’ve tried matching File / Folder Name criteria with git, and also using the absolute path /usr/local/Cellar/git/2.51.1/bin/git in the Application Groups, but it still didn’t work.

I tried matching it with parent process and even using the hash (SHA-256).

I tested sample commands like ls -la, as shown in the documentation website, and the ls -la were successfully captured.

The git command filtering is only work when i use a sudo command application type. i.e. if i type sudo git pull...

But the case i want is not using sudo.
Does EPM-M only process binary that are signed by Apple?

Because the git from homebrew is not signed. 

I’m using macOS 13 Ventura and PMC 25.6.580

 

Thanks

Hi ​@raymondus,

 

The best recommendation I can think of would be to target any binary with command line argument containing git. If you’re getting stuck, I would recommending checking with support if they are able to narrow down what is occurring with execution vs implementation. 

 

The terminal items, along with controlling homebrew, can be a bit more challenging if the developers are allowed to install from any source (e.g. internet) vs an internal repository where approved applications are housed. 

Badge Earners

  • BCSE: Password Safe
    Kaenniehas earned the badge BCSE: Password Safe
  • 25 Courses Completed
    Daron Garrisonhas earned the badge 25 Courses Completed
  • BCSE: Privileged Remote Access
    AliBhas earned the badge BCSE: Privileged Remote Access
  • BCSE: Privileged Remote Access
    Krista Neunerhas earned the badge BCSE: Privileged Remote Access
  • BCSE: Password Safe
    Krista Neunerhas earned the badge BCSE: Password Safe
Show all badges
Terms & ConditionsCookie settingsAccessibility statement