We do not have a provisioning profile embedded (and closed a pull request to add one) as in this thread referenced above it says in macOS-Style App Group IDs The App Groups entitlement is not restricted on macOS, meaning that this claim doesn’t need to be authorised by a provisioning profile. Technically it’s a validation-required entitlement, something that we’ll come back to in the Entitlements-Validated Flag section.

I can confirm the error is reproduced when checking the requirement using codesignwith codesign --verify -v -R '=anchor apple generic and certificate leaf[subject.OU] = <TEAMID_STARTS_WIDTH_DIGIT>' results in error: invalid or corrupted code requirement(s) Requirement syntax error(s): line 1:55: unexpected token: = line 1:57: expecting EOF, found '7'

I have tested with a provisioning profile created on 2025-02-03. I just created a new profile today on 2025-09-23 and see that com.apple.security.application-groups has been added.