Thank you @eskimo, codesigning framework as a whole fixed my issue. Although, I do see issues when notarizing the app now "status": "Invalid", "statusSummary": "Archive contains critical validation errors", "statusCode": 4000, { "severity": "error", "code": null, "path": "xxx(arm64).pkg/xxx.pkg Contents/Payload/Applications/xxx/xxx.app/Contents/Library/LaunchServices/com.xxx.PrivilegedHelper", "message": "The executable does not have the hardened runtime enabled.", "docUrl": "https://developer.apple.com/documentation/security/notarizing_macos_software_before_distribution/resolving_common_notarization_issues#3087724", "architecture": "arm64" }, { "severity": "error", "code": null, "path": "xxx(arm64).pkg/xxx.pkg Contents/Payload/Applications/xxx/xxx.app/Contents/Frameworks/Sparkle.framework/Versions/B/Autoupdate", "message": "The signature does not include a secure timestamp.", "docUrl": "https://developer.apple.com/documentation/security/notarizing_macos_software_before_distribution/resolving_common_notarization_issues#3087733", "architecture": "arm64" } It gave more errors with same info. But, I already add --timestamp and --options=runtime when codesigning my app. Not sure what's missing here. Could you please take a look. I can provide more logs if needed

@eskimo, thanks for the reply. I tried removing --deep flag while signing and still see below error when I launch the app. Notes: Translocated Process Crashed Thread: 0 Exception Type: EXC_CRASH (SIGABRT) Exception Codes: 0x0000000000000000, 0x0000000000000000 Exception Note: EXC_CORPSE_NOTIFY Termination Reason: DYLD, [0x5] Code Signature Dyld Error Message: Library not loaded: @rpath/***.framework/Versions/A/*** Referenced from: /private/var/folders/*/***.app/Contents/MacOS/*** Reason: no suitable image found. Did find: /private/var/folders/8k/lq520j255vx959w2gz3rl1sw0000gn/T/AppTranslocation/A032D364-17F7-4515-A59C-B9CCBAC0A539/d/***.app/Contents/MacOS/../Frameworks/***.framework/Versions/A/***: code signature invalid for '/private/var/folders/8k/lq520j255vx959w2gz3rl1sw0000gn/T/AppTranslocation/A032D364-17F7-4515-A59C-B9CCBAC0A539/d/***.app/Contents/MacOS/../Frameworks/***.framework/Versions/A/***' And below is my codesign order codesign -s "Developer ID Application" --options=runtime,library --timestamp -f ***.app/Contents/Resources/***\ ***.driver codesign -s "Developer ID Application" --options=runtime,library --timestamp -f ***.app/Contents/Library/LaunchServices/com.xxxx.privilegedHelper codesign -s "Developer ID Application" --options=runtime,library --timestamp -f ***.app/Contents/Resources/***/***.app/Contents/MacOS/*** codesign -s "Developer ID Application" --options=runtime,library --timestamp -f ***.app/Contents/Resources/daemon/xxxr.app/Contents/MacOS/*** codesign -s "Developer ID Application" --options=runtime --timestamp -f ***.app/Contents/Frameworks/***.framework/Versions/A/Resources/***.app/Contents/MacOS/*** codesign -s "Developer ID Application" --options=runtime --timestamp -f ***.app/Contents/Frameworks/***.framework/Versions/A/Frameworks/***.framework/Versions/Current/Resources/*** codesign -s "Developer ID Application" --options=runtime --timestamp -f ***.app/Contents/Frameworks/***.framework/Versions/A/Frameworks/***.framework/Versions/Current/Libraries/***.dylib codesign -s "Developer ID Application" --options=runtime --timestamp -f ***.app/Contents/Frameworks/***.framework/Versions/A/Frameworks/***.framework/Versions/Current/Libraries/***.dylib codesign -s "Developer ID Application" --options=runtime --timestamp -f ***.app/Contents/Frameworks/***.framework/Versions/A/Frameworks/***.framework/Versions/Current/Libraries/***.dylib codesign -s "Developer ID Application" --options=runtime --timestamp -f ***.app/Contents/Frameworks/***.framework/Versions/A/Resources/upload-symbols codesign -s "Developer ID Application" -f --timestamp -o runtime --entitlements $entitlement -f ***.app

Do you have entitlements set on any non-main-executable code? Like frameworks? Or shared libraries? @eskimo, I do codesign using entitlements on frameworks and I'm seeing this error in macOS 10.15, 11.* and 13.* mapping to one of my frameworks when I launch the app. Any idea what the entitlements should look like when code signing frameworks? My current entitlements [Key] com.apple.application-identifier [Value] [String] HXXXXXXX.bundle.id [Key] com.apple.developer.aps-environment [Value] [String] production [Key] com.apple.developer.team-identifier [Value] [String] HXXXXXXX [Key] com.apple.security.automation.apple-events [Value] [Bool] true [Key] com.apple.security.cs.disable-library-validation [Value] [Bool] true [Key] com.apple.security.device.audio-input [Value] [Bool] true [Key] com.apple.security.device.camera [Value] [Bool] true [Key] com.apple.security.temporary-exception.mach-lookup.global-name [Value] [Array] [String] $(PRODUCT_BUNDLE_IDENTIFIER)-spks [String] $(PRODUCT_BUNDLE_IDENTIFIER)-spki Provisioning profile entitlements <key>com.apple.developer.aps-environment</key> <string>production</string> <key>com.apple.application-identifier</key> <string>HXXXXXXX.bundle.id</string> <key>keychain-access-groups</key> <array> <string>HXXXXXXX.*</string> </array> <key>com.apple.developer.team-identifier</key> <string>HXXXXXXX</string>